Tootfinder

Researchers find several packages in the @redhat-cloud-services npm namespace shipped malware targeting credentials for GitHub Actions, AWS, GCP, and others (Rohan Prabhu/Step Security Blog)
https://www.stepsecurity.io/blog/multiple-redhat-cloud-servi…

Multiple redhat-cloud-services npm Packages compromised - StepSecurity
Several packages in the @redhat-cloud-services npm scope were found to carry malicious payloads that fire via a preinstall hook on every npm install. The affected versions span multiple packages across the RedHat Cloud Services frontend ecosystem. The payload is a sophisticated multi-stage credential harvester that targets GitHub Actions secrets, AWS, GCP, Azure, Kubernetes, HashiCorp Vault, npm tokens, and CircleCI tokens

Refurbed Wachstum: 3-Milliarden-Euro-Marke und 13 weitere Märkte
Der Online-Marktplatz refurbed für wiederaufbereitete Geräte ist nun in 24 europäischen Märkten vertreten und hat die 3-Milliarden-Euro-Marke geknackt.

Daar gaat Dilan niets aan doen …
https://www.ftm.nl/artikelen/defensie-kijkt-steevast-weg-bij-racisme-zeggen-deze-militairen

Defensie kijkt steevast weg bij racisme, zeggen deze militairen
Met beeldvormingscampagnes en ‘diversiteitstoolboxen’ hoopt Defensie de werkvloer diverser te maken. Maar militairen van kleur die melding maken van racisme, moeten dat vaak met hun carrière bekopen. ‘Hoe heb ik kunnen denken dat ik een Nederlandse militair kon zijn? De Nederlandse militairen zijn de witte militairen.’

A suspected North Korean hacker has hijacked and modified a popular open source software development tool
to deliver malware that could put millions of developers at risk of being compromised.
On Monday, a hacker pushed malicious versions of the widely used JavaScript library called Axios,
which developers rely on to allow their software to connect to the internet.
The affected library was hosted on npm, a software repository that stores code for open source projects…

North Korean hackers blamed for hijacking popular Axios open source project to spread malware | TechCrunch
A hacker inserted malware in Axios, an open source web tool downloaded tens of millions of times weekly, in a widespread hack.

Neue Apple-Mobilgeräte: Interessante Kleinigkeiten zu iPhone 17e und iPad Air M4
Auf den ersten Blick scheinen Apples iPhone 17e und iPad Air M4 reine Spec-Bumps zu sein. Das ist aber nur teilweise so. Ein Blick ins Datenblatt.

Netflix averaged 3M viewers for its Opening Night MLB game March 25, a bit short of NBC and Peacock's MLB broadcast the next night, with 3.2M viewers (Rick Porter/The Hollywood Reporter)
https://www.hollywoodreporter.com/tv/tv-news/mlb-opening…

Baseball’s New TV Partners Deliver Solid Audiences on Opening Day(s)
Netflix and NBC each draw 3 million viewers for their first primetime telecasts under a new deal with MLB.

#TGIQF: Das Quiz rund um Spam-E-Mails
So lange wie das WWW gibts auch die SPAM-Nachrichten, die ungefragt das E-Mail-Postfach verstopfen. Wir haben ein kleines Quiz dazu.

#TGIQF: Das Quiz rund um Spam-E-Mails
So lange wie das WWW gibts auch die SPAM-Nachrichten, die ungefragt das E-Mail-Postfach verstopfen. Wir haben ein kleines Quiz dazu.

Fun, which builds fiat and crypto payment rails for platforms like Polymarket and Aave, raised a $72M Series A in January, co-led by Multicoin and SignalFire (Ben Weiss/Fortune)
https://fortune.com/2026/05/01/fun-series-a-fundraise-multicoin-capital-signal…

Exclusive: Startup Fun raises $72 million for the serious business of converting crypto and cash
The crypto investor Multicoin Capital and the tech VC SignalFire led the Series A fundraise.

Einige der zuletzt hier besonders häufig geteilten #News:
WhatsApp-Malware-Kampagne installiert Backdoors
https://www.

Einige der zuletzt hier besonders häufig geteilten #News:
WhatsApp-Malware-Kampagne installiert Backdoors
https://www.