The Hacker News

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.

New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
CNN

CNN investigation: Missing teenager repeatedly appeared in d4vd’s orbit before her body was found

In the summer of 2024, a budding musical sensation known to his legion of mostly young fans as d4vd posted on social media that he was experiencing a case of writer’s block. “I’m in a song crisis ...