The Hacker News

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

TrapDoor spread 34 malicious packages across npm, PyPI, and Crates.io, stealing developer credentials and enabling persistence.

Google engineer in Switzerland charged in $1.2M Polymarket plot

Federal prosecutors say the software engineer used internal data to make Polymarket trades on Google’s Year in Search results ...

CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks

Cybercriminals used the Glassworm botnet to infect open source software projects with malware, and in turn hack the ...

FBI says Google engineer used internal search data to win $1.2M on Polymarket

The US charged a Google software engineer with insider trading after he allegedly made a profit of $1.2 million on Polymarket bets related to which public figures would top Google’s rankings for the ...