BeInCrypto

Changpeng Zhao Warns Crypto Devs to Rotate API Keys After GitHub Hack

GitHub says a poisoned VS Code extension exposed 3,800 internal repos as Binance founder CZ tells crypto devs to rotate keys.

Hackers have compromised dozens of popular open source packages in an ongoing supply-chain attack

Hulud, which has already compromised several open source projects and, in turn, developers and companies that use them.

Open source tool maker Grafana Labs says hackers stole its code, refuses to pay ransom

The open source project said hackers stole its codebase and threatened to publish its source code if the company did not pay.

Do you use Microsoft Exchange? Hackers are actively exploiting a new zero-day flaw

Microsoft warns of a new zero-day vulnerability that leaves Exchange open to hackers.
CoinDesk

The $293 million KelpDAO hack shows why DeFi is finally being forced to grow up

For protocol founders and security researchers, the incident reinforced a broader shift underway across crypto: DeFi is no longer primarily battling coding bugs. It’s battling complexity.
Decrypt

Hackers Insert Malware Into Mistral AI Software Download

Microsoft Threat Intelligence said attackers placed malicious code inside a Mistral AI download distributed through a Python ...

Google Says Hackers Used AI to Build Zero-Day Exploit

Google says hackers used AI to help build a zero-day exploit targeting 2FA, raising concerns about AI-assisted hacking.
SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...

University of Toronto among Canadian schools targeted in widespread cyberattack on Canvas system

The University of Toronto, the University of British Columbia and the University of Alberta are among the largest Canadian ...