The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.
eLife

The long-range gene regulatory landscape of cerebellar granule neuron progenitors

The study offers a valuable resource and integrates multiple complementary datasets to provide insights into regulatory mechanisms, although the conceptual advances are moderate and the central ...
eLife

Negative-Valence Neurons in the Larval Zebrafish Pallium

This valuable work identifies a subpopulation of neurons in the larval zebrafish pallium that responds differentially to varying threat levels, potentially mediating the categorization of negative ...
The Hacker News

ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories

ThreatsDay Bulletin: active exploits, supply chain attacks, AI abuse, and stealth data risks observed this week.

Critical vulnerability in Ruby's standard library ERB:attackers can execute code

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...
Hackaday

magnetic encoder

Knobs are ubiquitous in technology user interfaces, but touchscreens are increasingly replacing them for interface controls. The latest project from [upir] combines a rotating knob with a touchscreen ...
TechAnnouncer

Mastering Python: Practical Code Examples for Every Skill Level

We’ve put together some practical python code examples that cover a bunch of different skills. Whether you’re brand new to ...