New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
The Hacker News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.
SlashGear

6 Ways To Use Your Car's Tow Hitch (Besides Towing)

We may receive a commission on purchases made from links. You're probably used to seeing tow hitches attached to pickup trucks and SUVs. These devices connect to the vehicle's rear end and allow the ...