XWorm malware resurfaces with ransomware module, over 35 plugins

New versions of the XWorm backdoor are being distributed in phishing campaigns after the original developer, XCoder, abandoned the project last year.

A fungus, a four-legged duck, a joy ride and a fatal robbery: Akron at 200

This week in local history, a giant fungus made national news, P.T. Barnum displayed an Akron bird and a gunman killed a store clerk.

Hackers push fake apps with malware in Google searches

Hackers use fake Google search results to trick users into downloading lookalike apps laced with malware that have been pushed to the top.
The Chronicle

Durham conducts overnight mosquito spray near East Campus to stamp out West Nile virus

The operation, carried out by a fogging truck, targets the Trinity Park neighborhood and areas within a one-mile radius. Spraying will not occur directly on East Campus, and no disruption to normal ...

Cruise Line Fights Back Against Duck Prank Promising Fake Free Drinks

This isn't the first time the fun hide-and-seek duck game has been the subject of controversy. Back in 2024, Disney Cruise Lines said that they discouraged the practice of hiding ducks aboard ships ...
TechRepublic

Malware Injected Into Code Packages That Get 2 Billion+ Downloads Each Week

Malware Injected Into Code Packages That Get 2 Billion+ Downloads Each Week Your email has been sent An attack targeting the Node.js ecosystem was just identified ...

New Mexico Department of Health declares end to state’s measles outbreak

The New Mexico Department of Health said that the measles outbreak, which was affecting New Mexico this year, is officially over. The last case was reported on August 14, and ...
The New York Times

Social Platforms Duck Blame for Inflaming Divisions Before Charlie Kirk’s Death

After authorities said Mr. Kirk’s suspected shooter had been “radicalized” online, Meta, Reddit, TikTok and other platforms have stayed quiet — though not Elon Musk, who owns X. After authorities said ...
Bleeping Computer

Hackers hijack npm packages with 2 billion weekly downloads in supply chain attack

In a supply chain attack, attackers injected malware into NPM packages with over 2.6 billion weekly downloads after compromising a maintainer's account in a phishing attack. In the emails, the ...
TechRadar

A terrifying, self-replicating malwaere has infected npm packages with over 2 million downloads per week - here's how to stay safe

A new supply-chain attack compromised at least 187 npm packages, targeting developer secrets across software projects Shai-Hulud worm looks to steal credentials, modify packages, and spread malware ...
Nottinghamshire Live on MSN

The woman behind the viral TikTok hit - meet Nottingham's Mrs Hook-a-Duck

Yvette Price-Mear - or Mrs Hook-a-Duck as she is more commonly known - was surprised and amused to find a number of messages telling her that she had "gone viral on TikTok". When she opened the link ...
ADTmag

The Worm That Ate JavaScript: Inside the Shai-Hulud Supply Chain Attack

The JavaScript development community faced one of its most sophisticated supply chain attacks in September, when a self-replicating worm infiltrated the npm registry and compromised more than 180 ...