The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
New Scientist

Pancreatic cancer halted by virus injection in three patients

A virus has stopped pancreatic cancer in its tracks in three people in a clinical trial in the US. Further evaluation is needed in larger trials, but the early results are encouraging, especially ...
CNN

Attorneys for Tennessee inmate worry state could use expired drugs for lethal injection

Attorneys for a Tennessee death row inmate say they are concerned the state may be planning to use expired lethal injection drugs at his execution on Thursday, a growing concern across the country as ...
Morningstar

Dr. Reddy's Laboratories Launches its Generic Semaglutide Injection in Canada

The launch follows Dr. Reddy’s receipt of the Notice of Compliance (NOC) from Health Canada on April 28th, 2026, marking the company’s readiness to serve Canadian patients Dr. Reddy’s is the first ...
TechRepublic

Indirect Prompt Injection Is Now a Real-World AI Security Threat

AI agents are now being weaponized through prompt injection, exposing why model guardrails are not enough to protect enterprise data. Last week, researchers at Google and Forcepoint reported that ...
Wired

This Treatment Could Reverse Osteoarthritis Joint Damage With a Single Injection

You almost certainly know them: Someone who had to retire from soccer because of a hip problem. A grandmother who can't lift her arm to comb her hair because of shoulder pain. A coworker who had a ...
CBS News

DOJ reinstates firing squads, pentobarbital for federal executions

The Justice Department announced on Friday that it would reimplement lethal injection and firing squads as part of the Trump administration's efforts to "strengthen" the federal death penalty. "Among ...
NBC News

DOJ recommends bringing back firing squads in federal executions

President Donald Trump’s administration plans to add firing squads, electrocution and gas asphyxiation as alternative methods of executing people convicted of the gravest federal crimes, it announced ...
Infosecurity-magazine.com

Researchers Uncover 10 In-the-Wild Prompt Injection Payloads Targeting AI Agents

Security researchers have discovered 10 new indirect prompt injection (IPI) payloads targeting AI agents with malicious instructions designed to achieve financial fraud, data destruction, API key ...