SecurityWeek

GlassWorm Botnet Disrupted

The four C&C channels used by GlassWorm, the botnet targeting open source software developers, have been disrupted.

Kash Patel's 'BasedApparel' website is apparently hosting ClickFix malware

Based Apparel, an American online clothing company selling patriotic, conservative, and pro–free speech-themed merchandise, ...
CSO Online

GitHub Actions abused by Megalodon attack to slip malicious commits into 5,500 repos

Researchers say the campaign abused compromised access tokens and deploy keys to inject malicious GitHub Actions workflows ...
theregister

Malware dev tries to steal Claude users' secrets, writes npm slop, leaks own GitHub private token

An npm-slop package “mouse5212-super-formatter” targeting Claude users and acting as a stealer reached 676 downloads before being removed from the registry - and after making a major vibe coding ...
Microsoft

The Gentlemen ransomware: Dissecting a self-propagating Go encryptor

Microsoft Threat Intelligence presents a comprehensive analysis of The Gentlemen, a Go-based ransomware deployed by ...
Nature

Neural encoding articles from across Nature Portfolio

How sensory systems rapidly adapt to changing stimulus statistics remains unclear. Here the authors show that gain adaptation in recurrent networks can implement fast efficient coding, unifying prior ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...