Cryptopolitan on MSN

DeadLock ransomware group exploit Polygon smart contracts for stealth

DeadLock, a ransomware group that first emerged in July 2025, has made news again, and this time it is for abusing Polygon ...
InfoWorld

Possible software supply chain attack through AWS CodeBuild service blunted

Wiz researchers investigated and found the core of the flaw, a threat actor ID bypass due to unanchored regexes, and notified ...

Bonuses soared over the holidays, but there's a catch

Employers provided more money to more people at the end of 2025, but those gains might be masking a concern for the new year.
The Hacker News

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories ...