Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
The Hacker News

Notepad++ Fixes Hijacked Update Mechanism Used to Deliver Targeted Malware

Notepad++ 8.9.2 fixes update hijack exploited to deliver malware, patches RCE flaw, and hardens WinGUp security.

Arc Raiders devs explain why it's taken so long to ban cheaters

The duplication glitch in Arc Raiders was out of hand until it was patched, and Embark Studios has now explained why it took ...
The Hacker News

npm’s Update to Harden Their Supply Chain, and Points to Consider

First, people need to remember that the original attack on tools like ChalkJS was a successful MFA phishing attempt on npm’s ...
MIT Technology Review

Welcome to the dark side of crypto’s permissionless dream

Jean-Paul Thorbjornsen is a leader of THORChain, a blockchain that is not supposed to have any leaders—and is reeling from a ...

'They can never kill emulation': Players vexed as Nintendo continues its siege on Switch emulation, handing DMCAs to various emulators on GitHub

It might be time to back up some files.
NPR

How Wild

How Wild hits trails around the country, exploring the meaning of wilderness. A century ago, the U.S. set aside the first official wilderness. You'll hear stories from rangers, scientists, hikers, ...