Mini Shai-Hulud worm injects disk wiper into Microsoft Azure PyPI package

Supply chain attacks with a Dune sci-fi saga branding continue to spread across the open-source ecosystem, with a Microsoft ...
SecurityWeek

Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack

A fresh Mini Shai-Hulud supply chain attack has hit over 320 NPM packages, along with GitHub Actions and a VS Code extension.
InfoQ

Google Introduces Middleware Architecture for Genkit Applications

Google has introduced Middleware for Genkit, its open-source framework for building AI-powered and agentic applications. The ...
esa.org

Ecology Curricular Framework Endorsed by the Ecological Society of America.

The Four-Dimensional Ecology Education (4DEE) Framework Initiative has its roots in 30 years of debate among ecologists and ESA leaders calling for a framework for eco-literacy that would provide ...
The Hacker News

ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories

A token leaks. A bad package slips in. A login trick works. An old tool shows up again. At first, it feels like the usual mess. Then you see the pattern: attackers are not always breaking in. They are ...