The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.
The Hacker News

New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs

Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.

eScan Enterprise DLP Closes Critical GitHub Access Control Gap for Organizations

GitHub Team accounts leave enterprises exposed. eScan enforces corporate-only authentication across all GitHub tiers — ...

Official SAP npm packages compromised to steal credentials

Multiple official SAP npm packages were compromised in what is believed to be a TeamPCP supply-chain attack to steal ...

GitHub rushed to fix a critical vulnerability in less than six hours

GitHub’s engineering team developed a fix and deployed it just over an hour after identifying the root cause, protecting both ...
News9Live on MSN

AWS partners with OpenAI to bring GPT models and Codex to Amazon Bedrock in major AI shift

AWS has partnered with OpenAI to bring its latest AI models, including GPT-5.5, to Amazon Bedrock in limited preview. The ...
Globetrender

What's your humanoid hospitality strategy? Robotics professor weighs in

We talk to Stefan Leutenegger, professor at ETH Zurich, about humanoids' transition from gimmick to core hospitality ...