The Hacker News

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
Forbes

Don’t Click Twice—New Chrome, Edge, Safari Hack Attack Warning

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Update, Jan. 5, 2025: This story, originally published Jan. 3, ...
Forbes

Gmail Hack — Google Warns Users Have 7 Days To Act

Google says you have 7 days to recover your hacked Gmail account. Update, April 23, 2025: This story, originally published April 21, has been updated with mitigation advice for various hacking ...