Wired

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

A so-called software supply chain attack, in which hackers corrupt a legitimate piece of software to hide their own malicious code, was once a relatively rare event but one that haunted the ...
Microsoft

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft

Microsoft has identified an active supply chain attack targeting the @antv node package manager (npm) package ecosystem. A threat actor compromised an @antv maintainer account and published malicious ...
Revolver

IRON MAIDEN’s BRUCE DICKINSON announces ‘The Mandrake Project: Year Two’ graphic novel

Iron Maiden vocalist Bruce Dickinson is about to deliver another volume of his fantastical comic-book series The Mandrake Project, and by all accounts, the Air Raid Siren suggests the latest ...
Mashable

NYT Mini crossword answers, hints for May 18, 2026

The biggest stories of the day delivered to your inbox.
Bleeping Computer

Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack Microsoft 365 accounts. Despite an international law enforcement operation ...
CNET

Today's NYT Mini Crossword Answers for Saturday, May 16

CNET editor Gael Fashingbauer Cooper, a journalist and pop-culture junkie, is co-author of "Whatever Happened to Pudding Pops? The Lost Toys, Tastes and Trends of the '70s and '80s," as well as "The ...