The Hacker News

27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials

Researchers uncovered 27 malicious npm packages used over five months to host phishing pages that steal credentials from ...

Suspect Confessed to Planting Pipe Bombs Near the Capitol Before Jan. 6

A Virginia man was charged with planting the bombs outside Democratic and Republican headquarters. Court documents show he ...

Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited ...
Dark Reading

Dark Reading Confidential: Stop Secrets Creep Across Developer Platforms

Dark Reading Confidential Episode 13: Developers are exposing their organizations' most sensitive information; our guests ...