Red Hat hit by npm supply‑chain attack - here's how to stay safe

Red Hat hit by npm supply‑chain attack - here's how to stay safe ...
Space.com on MSN

Atlas V rocket launches 29 Amazon Leo internet satellites to orbit from Florida

A United Launch Alliance Atlas V rocket launched 29 Amazon Leo internet satellites to orbit on Friday night (May 28).
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
The Hacker News

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

Codex tokens were exfiltrated via a popular npm package, affecting users since v0.1.82 and enabling persistent account access ...
Android

Infostealer Malware Sneaks into Popular Codex UI Tool After One Month of Building Trust

Cybersecurity researchers at Aikido Security have uncovered a malicious supply chain attack targeting OpenAI Codex developers via the npm package “codexui-android”. While the associated GitHub ...
Cryptopolitan on MSN

The 5 best Solana APIs and node providers for developers in 2026

Solana’s role in crypto has shifted considerably over the past two years. It was once mostly a high-throughput Ethereum ...
Cloud Security Alliance

Securing AI Workloads in AWS: Why Bedrock and SageMaker Need Runtime Detection and AI-Powered Response

Attackers use AI to target Bedrock and SageMaker; learn why posture alone fails and how runtime detection and AI-powered ...
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The ...