Category: Cyber Threat News
A major npm supply chain attack has compromised more than 40 Node Package Manager (npm) packages, injecting a malicious script called bundle.js to steal sensitive developer credentials. According to security researchers, the campaign, dubbed the Shai-Hulud attack, uses the open-source tool TruffleHog (TruffleHog Secret Scanner) to extract secrets such as GitHub personal access tokens, Node […]
French regional healthcare agencies have reported cyber-attacks that compromised patient identity data across three regions—Hauts-de-France, Normandy, and Pays de la Loire. The incidents, disclosed on September 8, 2025, show how attackers targeted servers hosting patient identity records from public hospitals in these regions. TL;DR Three French regional healthcare agencies suffered cyber-attacks exposing patients’ personal identity data, […]
Microsoft September 2025 Patch Tuesday brings fixes for 81 security flaws across Windows, Office, Azure, and SQL Server. Eight of these are marked critical, including dangerous remote code execution and privilege escalation bugs. Patch Tuesday updates are designed to close gaps before attackers exploit them, but history shows cybercriminals move fast once vulnerabilities are disclosed. […]