Hackers exploited a compromised npm package to breach cloud systems and gain full AWS administrator access within 72 hours.

A malicious npm package disguised as a legitimate AI tool to install the virally popular OpenClaw, but designed to steal system passwords and crypto wallets, has been identified by cybersecurity ...

The US says the ships were targeted in the Strait of Hormuz - a key shipping route. In Dubai, authorities say the airport is operating normally after two drones were downed in the area.

UNC6426 used stolen GitHub tokens from the 2025 nx npm breach to gain AWS admin access in under 72 hours, enabling data theft and cloud destruction.