Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
Total Telecom

FIFA scams shift focus from fans to employees, CUJO AI finds

Major global sporting events have always attracted opportunistic fraud. The 2026 FIFA World Cup, played across the United ...
Microsoft

Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access

Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in ...

US slaps new sanctions on Cuban companies key to island’s crumbling economy

The U.S. government has slapped additional sanctions on Cuban companies that are expected to spook foreign investors and ...
Security Boulevard

SmartApeSG Launches Okendo Reviews Supply Chain Attack

IntroductionOn May 14, 2026, the Zscaler ThreatLabz team identified unusually high activity associated with the threat actor SmartApeSG to deploy malware. During our examination, we discovered ...

Model falls to her death after bungee workers ‘forgot to attach cord’

This is the moment a 21-year-old model plunged to her death after she was thrown from a bridge without a bungee cord. Online ...

Bungee workers ‘can’t remember’ who was supposed to attach safety cord before model plunged to death

The workers of a bungee company who threw a model to her death after her safety cord was unattached have appeared in court.