SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...
Cryptopolitan

Hackers plant crypto drainer in BonkFun Solana memecoin launchpad domain

The BonkFun hackers planted a crypto-draining script on the BonkFun domain, disguised as a standard interaction mimicking compliance requests, and began draining funds from unsuspecting users.
CoinDesk

Bonk.fun hacked: Domain hijacked, crypto drainer planted

The operator, known as Tom, said only users who signed a fake terms-of-service message on the compromised site after the breach were affected.
PCMag on MSN

Wikipedia forced to lock down edits over JavaScript that could delete pages

The nonprofit that oversees Wikipedia briefly enforced a 'read-only' mode on Thursday morning as users spotted code designed ...

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.
cybernews

Amateur attacker uses AI toolkits, including Claude and Deepseek, to hack Fortinet firewalls

Commercial AI services are enabling even unsophisticated threat actors to conduct cyberattacks at scale. This time, a Russian-speaking threat actor leveraged AI tools to compromise more than 600 ...