Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

Stratacache adds to string of real estate deals with $18M Trotwood sale

The sale follows CEO Chris Riegel auctioning off two significant downtown Dayton high-rises as the company refocuses on ...
The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
Microsoft

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...

Rockville startup Quantum Space plans to go public via SPAC merger

It's becoming a busier year for IPOs of D.C-area companies. A Rockville space tech company whose CEO is a former NASA chief ...
The Caledonian-Record

LAIKA Becomes a Certified B Corporationâ„¢

Award-winning animation studio LAIKA, known for Coraline, ParaNorman, The Boxtrolls, Kubo and the Two Strings, Missing Link ...

Synagogue shooters were hired by a foreign entity, Secretary of State for Combatting Crime says

The secretary’s comments follow a Toronto police announcement linking a shooters-for-hire network to multiple GTA shootings ...

10 Days in a Madhouse sets a new standard for contemporary opera in North America

Extraordinary show follows investigative journalist Nellie Bly as she infiltrates dilapidated psychiatric hospital in 1887 ...

Chrome for macOS soundly beats browser benchmark records

Google has set new browser performance records for Chrome following a year of improvements, with the latest results made ...
The Hacker News

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

Multiple npm supply chain attacks used 50+ poisoned packages to spread IronWorm, a Rust-based stealer, and a Miasma worm ...
The Caledonian-Record

Platner seeks Democratic nomination for US Senate to set up critical Maine race with Collins

Graham Platner is seeking to make a Democratic nomination for U.S. Senate official in advance of one of the most anticipated contests of the year. Platner is a brash political ...