A：SANDWORM_MODE是一个活跃的供应链蠕虫攻击活动，利用至少19个恶意npm包实施凭据收集和加密货币密钥窃取。它具备窃取系统信息、访问令牌、环境机密和API密钥的能力，并能通过滥用被盗的npm和GitHub身份自动传播扩大影响。

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

The circuit court now expects the Trump administration to file a brief by March 20 explaining why it appealed the district court’s ruling and for Kelly’s legal team to file its reply brief by April 27 ...

Java turned 30 in 2025. That's a good time to look back, but also forward.