SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...

US says it has targeted Iranian military facilities after responding to attacks on navy ships

The US says it targeted Iranian "missile and drone launch sites; command and control locations; and intelligence, ...

macOS ClickFix attacks deliver AppleScript stealers to snarf credentials, wallets

A ClickFix campaign targeting macOS users delivers an AppleScript-based infostealer that collects credentials and live ...
SecurityWeek

SAP NPM Packages Targeted in Supply Chain Attack

Four SAP NPM packages compromised in the Mini Shai-Hulud supply chain attack trigger a Bun runtime to install an information ...

White supremacist killer Brenton Tarrant fails to overturn guilty pleas for New Zealand mosque attacks

The 35-year-old had argued his initial admissions of guilt over the 2019 Christchurch attacks were provoked by poor mental ...

Protests may need to be stopped in some cases, PM suggests

The prime minister has suggested there may be a case for banning some protests, following calls for a suspension of ...
Morning Overview on MSN

The 'mini Shai-Hulud' attack hides inside AI coding agent configs — the first supply chain attack to weaponize Claude Code and VS Code as persistence vectors

On April 29, 2026, someone slipped malicious code into four widely used SAP software packages. Within days, the infection had ...
BBC

Man who followed Sikh woman home and raped her in religiously aggravated attack given life sentence

We are going to bring this live page to a close. Just a reminder if you have been affected by issues raised by today's coverage that support is available and there are some useful links on the BBC's ...
Cryptopolitan on MSN

Malicious SAP npm packages target crypto wallet data

Four npm packages linked to SAP's Cloud Application Programming Model were hijacked. The hackers added code that steals ...
The Indiana Lawyer

Google disrupts hackers using AI to exploit unknown weakness in company’s digital defense

It's a moment cybersecurity experts have warned about for years: malicious hackers arming themselves with AI to supercharge their ability to break into the world’s computers.
CSO Online

SAP npm package attack highlights risks in developer tools and CI/CD pipelines

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...
LGBTQ Nation on MSN

Democrat refuses to resign amid outrage over “terrible” anti-trans mailer

"You need to step down. Period," one angry constituent told him at an acrimonious county council meeting this week.