Ethereum developers are being targeted by malicious npm packages that impersonate Hardhat plugins to steal private keys and sensitive data. Socket researchers reported the ongoing attack, stating that twenty such packages have been identified, amassing over a thousand downloads. The attackers mimic legitimate package names to trick developers into using them, resulting in potential backdoors in production systems and loss of funds.
HHS Proposes Major HIPAA Cybersecurity Rule Changes
The U.S. Department of Health and Human Services has issued a Notice of Proposed Rulemaking to amend the Health Insurance Portability and Accountability Act’s Security
