The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
CNET

Tired of Your Full Inbox? Here's How to Get Back 15GB of Free Gmail Storage Now

Jason Chun is a CNET writer covering a range of topics in tech, home, wellness, finance and streaming services. He is passionate about language and technology, and has been an avid writer/reader of ...