The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
TechJuice

SAP npm Packages Compromised in Mini Shai-Hulud Supply Chain Attack

Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.

Lantern Pharma Inc. (LTRN) Discusses Live Demonstration of withZeta.ai Platform for AI-Driven Oncology Drug Discovery Transcript

Discusses Live Demonstration of withZeta.ai Platform for AI-Driven Oncology Drug Discovery April 30, 2026 8:30 AM ...
How-To Geek on MSN

Replace Spotify Premium with Jellyfin and these 3 plugins

"Mom, can we get Spotify?" "We have Spotify at home." ...
The Hacker News

Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft

Sleeper packages in Ruby and Go steal credentials and alter CI workflows, leading to persistent access and data exfiltration.
Hosted on MSN

USPTO bulk data update aligns with new local tools

The USPTO has released major updates to its bulk patent and trademark datasets on the Open Data Portal, including extensive historical Patent File Wrapper records and daily incremental updates. These ...
Arabian Post

AI commit opens crypto wallet risk

A malicious npm dependency slipped into an AI-assisted crypto trading project has exposed how automated coding tools can be manipulated into importing software that steals credentials, wallet data and ...