The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.

Postmaster General Confirms Plan to Hold Back Mail Ballots Under Proposed Rule

The postmaster general, David Steiner, said on Wednesday that under a proposed rule, his agency would not deliver mail ballots in states that decline to hand over voter data.

New macOS ClickFix attack silently mounts DMGs to push infostealer

A new macOS ClickFix campaign is using Terminal commands to silently download, mount, and launch info-stealing malware from ...
Telegraph HeraldOpinion

Farm & Food File: Good luck eating that cotton sandwich

The June World Agricultural Supply and Demand Estimates from USDA contains a paradox policymakers might want to note: ...
The Hacker News

âš¡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and More

This week’s cybersecurity recap covers Firefox and Chrome bugs, EDR-killer tools, a TV botnet, an OpenBSD flaw, Android ...
PCMag

I Traced My Leaked Email Address to the Dark Web. Here's How It Got There

After AI-powered scams overwhelmed my inbox, I investigated how my email address ended up on the dark web—and discovered the ...

Georgia teacher accused of sex with 6 students had OnlyFans account, was recorded in ‘Jesus Loves You’ sweater: cops

The Georgia science teacher accused of sexually abusing students was allegedly being blackmailed by students over her ...

USPS proposed rule requiring states to give voter lists to federal government for mail ballots to be delivered

The rule has not been finalized as of this writing and the executive order it's following is facing a legal challenge from ...
Microsoft

StealC and Amadey: Breaking down infostealers and the cybercrime services that deliver them

On June 24, 2026, Microsoft’s Digital Crimes Unit (DCU) facilitated the takedown, suspension, and blocking of domains that ...
The Sun Chronicle

Brendan Sorsby drops lawsuit against NCAA after getting an injunction to play despite gambling

Brendan Sorsby has dropped his lawsuit against the NCAA, making the quarterback ineligible again and ending his college ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
The Caledonian-Record

Mother Identified After Police Sought Parents Of Child Found Walking Downtown In Pajamas

A boy wearing pajamas with a blanket draped over his head was found walking on Railroad Street Friday morning, and police ...