techtimes

Ghost CMS SQL Injection Hits 700 Sites: Harvard, DuckDuckGo Serve Fake Cloudflare Malware

An unpatched SQL injection vulnerability in the Ghost content management system has been weaponized in an active, large-scale cyberattack that has compromised more than 700 websites worldwide — ...
The Hacker News

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

TrapDoor spread 34 malicious packages across npm, PyPI, and Crates.io, stealing developer credentials and enabling persistence.
Internet of People

TrapDoor attack targets crypto wallets, AWS keys and GitHub tokens

The malware spread through npm, PyPI, and Rust packages in coordinated waves. It steals crypto wallets, SSH keys, and cloud developer credentials. AI coding tools were also targeted through malicious ...
DataBreachToday

Automated 'Megalodon' Campaign Spreads GitHub Repo Backdoors

More than 5,000 GitHub repositories fell victim to an automated campaign, codenamed "Megalodon," in which an attacker ...
Longmont Times-Call

Longmont Times-Call

No swimming in Union Res 🛟 Memorial Day events Sunset pool opens ☀️ Police calls outpacing staff 🚨 Osprey chick hatches 🐣 This year, the district graduated roughly 2,400 seniors, and 502 of those ...