The Hacker News

144 Mastra npm Packages Compromised via Hijacked Contributor Account

Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.
Bleeping Computer

Red Hat npm packages compromised to steal developer credentials

More than 30 npm packages under Red Hat's '@redhat-cloud-services' namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, ...
keengamer.com

Path of Exile 2 (PoE 2) Guide – How to Use In-Game Build Planner

The Path of Exile 2 in-game Build Planner is a built-in guide system that lets you load a community build directly into the game. It does not create the build for you, spend your passive points, or ...
Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...
NPR

A federal judge in D.C. declines to block Trump's executive order on voting by mail

A federal judge has declined to temporarily block President Trump's executive order that calls for restricting voting by mail. The ruling released on May 28 by U.S. District Judge Carl Nichols, a ...
NPR

Purpose-built for public media: How NPM and PRX are collaborating to grow digital audio revenue for stations

Public radio stations are the backbone of community storytelling, with unmatched local broadcast presence, deep trust and high reach. But as listeners increasingly migrate toward on-demand audio, many ...
The Hacker News

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

A new coordinated cross-ecosystem software supply chain attack campaign has targeted npm, PyPI, and Crates.io to distribute credential-stealing malware. The campaign, codenamed TrapDoor, spans more ...
VentureBeat

Valid certificates, stolen accounts: how attackers broke npm's last trust signal

On May 19, 633 malicious npm package versions passed Sigstore provenance verification. They were cleared by the system because the attacker had generated valid signing certificates from a compromised ...
Bleeping Computer

GitHub links repo breach to TanStack npm supply-chain attack

GitHub says the hackers who breached 3,800 internal repositories gained access via a malicious version of the Nx Console VS Code extension, compromised in last week's TanStack npm supply-chain attack.
NBC News

Trump orders banks to take a closer look at clients’ citizenship in new immigration enforcement move

WASHINGTON — President Donald Trump on Tuesday signed an executive order that requires banks to take a closer look at the citizenship of their customers, a new measure in his administration’s push to ...
Microsoft

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft

Microsoft has identified an active supply chain attack targeting the @antv node package manager (npm) package ecosystem. A threat actor compromised an @antv maintainer account and published malicious ...