Tootfinder

It's almost Friday, so kick back and check out today's Metacurity for the most critical infosec developments you should know, including
--Hackers stole millions from Bitcoin Depot wallets,
--OpenAI readies its own vulnerability hunting system,
--Handala breached the devices of former IDF chief,
--Hackers published data from China's supercomputer,
--Hundreds of unprotected and unencrypted Modbus devices are exposed on the internet,
--Hack-for-hir…

Hackers stole millions from Bitcoin Depot wallets
OpenAI readies its own vulnerability hunting system, Handala breached the devices of former IDF chief, Hackers published data from China's supercomputer, Hundreds of unprotected and unencrypted Modbus devices are exposed on the internet, Hack-for-hire attacks are targeting journalists, much more

A suspected North Korean hacker has hijacked and modified a popular open source software development tool
to deliver malware that could put millions of developers at risk of being compromised.
On Monday, a hacker pushed malicious versions of the widely used JavaScript library called Axios,
which developers rely on to allow their software to connect to the internet.
The affected library was hosted on npm, a software repository that stores code for open source projects…

North Korean hackers blamed for hijacking popular Axios open source project to spread malware | TechCrunch
A hacker inserted malware in Axios, an open source web tool downloaded tens of millions of times weekly, in a widespread hack.