North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware

Operation Dream Job is evolving once again, and now comes through malicious dependencies on bare-bones projects.
The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
GitHub

konradmichalik/db-sync-tool

Sync databases from and to remote systems via SSH Proxy mode for transfers between isolated environments Automatic credential extraction from PHP frameworks ...
Boston.com

Students hack their way into the future of brain-computer interfaces

Students hack their way into the future of brain-computer interfaces At a hackathon over the weekend, students worked with real brain data to create new tools for brain-machine systems.
Bleeping Computer

New ClickFix attacks abuse Windows App-V scripts to push malware

A new malicious campaign mixes the ClickFix method with fake CAPTCHA and a signed Microsoft Application Virtualization (App-V) script to ultimately deliver the Amatera infostealing malware. The ...
Bleeping Computer

Hacker admits to leaking stolen Supreme Court data on Instagram

A Tennessee man has pleaded guilty to hacking the U.S. Supreme Court's electronic filing system and breaching accounts at the AmeriCorps U.S. federal agency and the Department of Veterans Affairs.