The Hacker News

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across developer systems.
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
ZME Science

Historians Discover the Long-lost ‘Leaf 123’ of the Archimedes Palimpsest. The Forgotten Page Was Erased to Make Room for a Medieval Prayer

The newly recovered 1000-year-old page from the Archimedes palimpsest. Credit: Blois, Musée des Beaux-Arts / IRHT-CNRS. For ...