Tootfinder

»npm Packages With 2 Billion Weekly Downloads Hacked in Major Attack:
Aikido Security flagged the largest npm attack ever recorded, with 18 packages like chalk, debug, and ansi-styles hacked to hijack crypto wallets via injected code.«
Good heavens! Another example of how "simple" and popular programming languages are misused to exploit users.
😠

npm Packages With 2 Billion Weekly Downloads Hacked in Major Attack
Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

Deutschland kotzt mich aktuell wirklich an.
https://netzpolitik.org/2025/hessen-polizei-ueberprueft-1-600-psychisch-erkrankte-menschen/

Hessen: Polizei überprüft 1.600 psychisch erkrankte Menschen
Die hessische Polizei geht systematisch alle Personen in ihren Datenbanken durch, bei denen sie einen Hinweis auf eine „Psychische und Verhaltensstörung“ gespeichert hat. Damit will sie Risiken für Gewalttaten erkennen und etwa Gefährderansprachen oder Überwachung planen. Um Betroffene zu unterstützen, bräuchte es andere Maßnahmen.

Hessen: Polizei überprüft 1.600 psychisch erkrankte Menschen #wtf https://netzpolitik.org/2025/hessen-polizei-ueberprueft-1-600-psychisch-erkrankte-menschen/

Hessen: Polizei überprüft 1.600 psychisch erkrankte Menschen
Die hessische Polizei geht systematisch alle Personen in ihren Datenbanken durch, bei denen sie einen Hinweis auf eine „Psychische und Verhaltensstörung“ gespeichert hat. Damit will sie Risiken für Gewalttaten erkennen und etwa Gefährderansprachen oder Überwachung planen. Um Betroffene zu unterstützen, bräuchte es andere Maßnahmen.

Forms: Passacaglia and Fantasia or Fugue and Fantasy
#ClassicalMusic #NewRelease
https://

Forms: Passacaglia and Fantasia or Fugue and Fantasy
Stan Stewart - @muz4now

Man Follows Diet Advice From ChatGPT, Ends Up With Psychosis
https://gizmodo.com/man-follows-diet-advice-from-chatgpt-ends-up-with-psychosis-2000640705

Aikido Security says attackers injected malware into 18 popular npm packages, including the debug package, with over 2.6B total weekly downloads (Sergiu Gatlan/BleepingComputer)
https://www.bleepingcomputer.com/news/secu

It’s almost like programming language monocultures with “best practices“ and paradigms requiring hundreds or thousands of dependencies even for simple apps are harmful https://www.bleepingcomputer.com/news/security/hackers-hijack-npm-packages-with-2-billion-weekly-downloads-in-supply-chain-attack/

python_dependency: Python Dependency Network
Python's package dependency networks. Nodes in the network are Python's packages registered to PyPI and edges are dependencies among packages.
This network has 58743 nodes and 108399 edges.
Tags: Technological, Software, Unweighted
https://networks.sk…

DOGE is still slashing government contracts, with around $2.2 billion in cyber contracts cut through August 2025.
Check out today's Metacurity for more on which contracts have been cut and other top infosec developments you should know, including
--18 popular JavaScript code packages were compromised by malware,
--WhatsApp former security chief accuses Meta of security and privacy flaws,
--Treasury sanctions Myanmar and Cambodia scam businesses and people,
--IC…

DOGE has slashed government cyber contracts by $2.2 billion so far
18 popular JavaScript code packages compromised by malware, WhatsApp ex-security chief accuses Meta of security and privacy flaws, Treasury sanctions Myanmar & Cambodia scam workers and firms, ICE is spending $4m on facial to hunt for cop assaulters, Hacked Boris Johnson files leaked, much more

xAI introduces Grok 4, trained on its Colossus supercomputer, featuring multimodal tools, faster reasoning, Grok 4 Voice, Grok 4 Code, a new interface, and more (Amanda Caswell/Tom's Guide)
https://www.tomsguide.com/ai/grok-4-is-her…