Cryptopolitan on MSN

Over 80,000 sensitive password and key files leaked online

Researchers uncover more than 80,000 leaked passwords, keys, and sensitive files exposed on popular online code formatting ...
InfoWorld

Developers left large cache of credentials exposed on code generation websites

A large trove of sensitive credentials, authentication keys, configuration data, tokens, and API keys has been potentially ...
Security Boulevard

The Latest Shai-Hulud Malware is Faster and More Dangerous

A new iteration of the Shai-Hulud malware that ran through npm repositories in September is faster, more dangerous, and more destructive, creating huge numbers of malicious repositories, compromised ...
SecurityWeek

640 NPM Packages Infected in New ‘Shai-Hulud’ Supply Chain Attack

Approximately 640 NPM packages have been infected with a new variant of the Shai-Hulud self-replicating worm in a fresh wave of attacks.

Lifetime access to AI-for-evil WormGPT 4 costs just $220

WormGPT 4 sales began around September 27 with ads posted on Telegram and in underground forums like DarknetArmy, according ...
Security Boulevard

Shai-Hulud: The Second Coming

While the September 2025 Shai-Hulud attack focused primarily on credential harvesting and self-propagation, this new variant ...