Dark Reading

Shai-hulud 2.0 Variant Threatens Cloud Ecosystem

The latest attack from the self-replicating, npm-package poisoning worm can also steal credentials and secrets from AWS, ...
Le Lézard

E-Home Household Services Holdings Limited decided to acquire an AI access control system and smart community service company to expand its front-end industrial chain

E-Home Household Services Holdings Limited (the "Company" or "eHome"), an integrated home services provider in China, announced today that following multiple rounds of negotiations and due diligence, ...

Hybrid cloud security must be rebuilt for an AI war it was never designed to fight

With 82% of enterprises running hybrid cloud and AI compressing patch-to-exploit windows to 72 hours, batch-based detection ...
Le Lézard

BCI Expands Portfolio, Closing the Gap Between Physical Security and Cybersecurity with NetLink Cabling Systems

Effective November 1, 2025, Business Communications, Inc. (BCI) has acquired NetLink Cabling Systems of Madison, Mississippi. The acquisition brings NetLink's deep low?voltage expertise in structured ...

Here’s why there’s a solar canopy in a sprawling parking lot at the University of Washington

UW is powering up its vision for a brighter, more sustainable future with a newly completed solar canopy installed in a ...
Việt Báo

Starlink is nearing the final step in providing satellite services in Vietnam.

According to a representative of the Telecommunications Department, Starlink plans to complete the application for a service ...

Amazon unveils Leo Ultra gigabit-speed terminal as enterprise preview begins

Amazon has introduced the final production version of Amazon Leo Ultra, an enterprise-grade terminal built for ...
Crowdfund Insider

Regtech SlowMist Analyzes Malicious Code Stealing Sensitive Keys, Private Information

Regtech firm SlowMist noted that recently, the NPM ecosystem experienced another large-scale package poisoning incident.

PostHog admits Shai-Hulud 2.0 was its biggest ever security bungle

PostHog says the Shai-Hulud 2.0 npm worm compromise was "the largest and most impactful security incident" it's ever experienced after attackers slipped malicious releases into its JavaScript SDKs and ...
The Hacker News

Shai-Hulud v2 Spreads From npm to Maven, as Campaign Exposes Thousands of Secrets

"As a new and significantly more aggressive wave of npm supply chain malware, Shai-Hulud 2 combines stealthy execution, ...
Dark Reading

Infamous Shai-hulud Worm Resurfaces From the Depths

New variant executes malicious code during preinstall, significantly increasing potential exposure in build and runtime ...