tech:

taffy

NPM bug allowed attackers to distribute malware as legitimate packages — The Hacker News

A “logical flaw” has been disclosed in NPM, the default package manager for the Node.js JavaScript runtime environment, that enables malicious actors to pass off rogue libraries as legitimate, writes Ravie Lakshmanan.

Here is the link: https://thehackernews.com/2022/04/npm-bug-allowed-attackers-to-distribute.html

Also see:

Hawk AI raises $17M (Germany)

Hawk AI, a provider of anti-money laundering (AML) and fraud prevention technology for banks and payment companies, has raised $17 million in a Series B funding round.

Hackers take down EU Parliament site in apparent DDoS attack — Techradar.pro

Russian hackers have attacked the website of the European...

CGI awarded $17.4M Nuclear Regulatory Commission cybersecurity contract

CGI has been awarded a cybersecurity contract to prepare the Nuclear Regulatory Commission (NRC) for emerging cyber threats under its Global Infrastructure and Development Acquisition (GLINDA) Blanket Purchase Agreement.

OpenSSL warns of critical security vulnerability with upcoming patch — ZDNet

This new hole only affects OpenSSL versions 3.0.0 through...

Protexxa raises $ 2.95M (Toronto)

Cybersecurity startup Protexxa has raised CAD$4 million (roughly $2.95 million) in seed funding.