The Hacker News

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across ...
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...
The New York Times

Hard Fork

Companies are using A.I. as a reason for layoffs, but the truth may be more complex. By Kevin RooseCasey NewtonRachel CohnWhitney JonesVjeran PavicKatie McMurranDan PowellRowan Niemisto and Diane Wong ...
International Monetary Fund

Containing Technology-Driven Bank Runs

In the worst-case scenario, a bank that would otherwise survive may collapse if concerns trigger a bank run. The effects of bank runs can go beyond the cost to banks’ owners and remaining creditors ...