Tech Times

npm Supply Chain Attack: North Korea Backdoored 144 AI Packages in 88 Minutes

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
Opinion
The Indiana LawyerOpinion

Chip Garver and Lacey Berkshire: Legislature’s overhaul expands housing supply, reins in HOAs

The centerpiece of the session, House Enrolled Act 1001, began as the most ambitious zoning preemption bill in recent memory.

How Are Newsletters And Podcasts Connected?

Newsletters are increasingly integrating podcasting, with platforms like Substack and beehiiv offering features for audience ...
CoinDesk

Ethereum's biggest 'sandwich' bot drained of $7.5 million in ironic exploit

Blockaid said an attacker tricked Jaredfromsubway.eth into approving fake trading routes, then used those approvals to drain ...
The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.

The Hot New Place for Singles

Last month in Los Angeles, John Fulton reported the following: Cafe Stella has not only reopened—it also might get a pool.
Bleeping Computer

Microsoft links Mastra AI supply chain attack to North Korean hackers

Microsoft has attributed a recent Mastra AI supply chain attack that compromised more than 140 npm packages to the North Korean hacking group Sapphire Sleet, also known as BlueNoroff. This attribution ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...