White supremacist killer Brenton Tarrant fails to overturn guilty pleas for New Zealand mosque attacks

The 35-year-old had argued his initial admissions of guilt over the 2019 Christchurch attacks were provoked by poor mental ...
TechJuice

SAP npm Packages Compromised in Mini Shai-Hulud Supply Chain Attack

Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.
InfoWorld

SAP npm package attack highlights risks in developer tools and CI/CD pipelines

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...

Antisemitism 'a national security emergency', government terror adviser says

Home Secretary Shabana Mahmood says the issue is being treated as an "absolute priority" but does not agree it constitutes a ...
The Hacker News

EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades

GitHub facades and Ethereum smart contracts power a March 2026 admin-targeted campaign, enabling resilient C2 rotation and ...
The Caledonian-Record

Under-fire UK boosts security for Jews after latest attack

The UK government on Thursday announced an extra £25 million ($33 million) for security outside synagogues and schools, a day ...

Police declare terrorist incident after two Jewish men stabbed in London

Two Jewish men have been stabbed in Golders Green, north London, in what has been declared a terrorist incident by police.
The Caledonian-Record

Inquiry into antisemitic attack that left 15 dead in Sydney recommends gun reform

A government inquiry into a rise in antisemitism across Australia before two gunmen believed to be inspired by the Islamic State group allegedly killed 15 people at a Sydney Jewish ...
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.

From XSS to RCE: How to hijack a DotNetNuke server via a single script injection

Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...

Official SAP npm packages compromised to steal credentials

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...

OpenAI to Apple macOS users: Update ChatGPT, Codex and its other apps before May 8 or lose access

OpenAI is mandating macOS users update ChatGPT Desktop and other apps by May 8, 2026, due to a compromised JavaScript library ...