GovInfoSecurity

Researchers Spot New Shai Hulud Variant

Hackers behind the Shai Hulud malicious npm JavaScript campaign are likely testing a new variant of the malware. Security ...
The Hacker News

27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials

Researchers uncovered 27 malicious npm packages used over five months to host phishing pages that steal credentials from ...
Infosecurity Magazine

Five Key Flaws Exploited in 2025's Major Software Supply Chain Incidents

Infosecurity has selected five of the most significant vulnerability exploitation campaigns of 2025 that led to major ...
InfoWorld

React2Shell: Anatomy of a max-severity flaw that sent shockwaves through the web

The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...
Cybernews

The biggest corporate security blunders of 2025

Copeland highlights the Allianz Life breach in July 2025 as a prime example, which occurred due to unauthorized access ...
腾讯网

obsidian,治疗了我的个人知识管理焦虑

朋友们,这是2025年更新的倒数第二篇公众号文章,非常干货,建议收藏,一键三连。 如果你用过飞书、Notion、各种笔记工具,大概率都会遇到同一个问题: 笔记越写越多,但越写越散; 想把笔记变成可以长期复用的内容资产,却要依赖复杂的数据库、视图和规则 ...