Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog – Page 2

Get the latest international news and world events from around the world.

Log in for authorized contributors

This Supervolcano Is Refilling With Magma After 7,300 Years

A supervolcano that once shook the Earth is quietly recharging—and scientists are finally seeing how it happens.

Scientists have found that the magma reservoir linked to the largest volcanic eruption of the Holocene is filling again. The discovery, led by Kobe University researchers studying Japan’s Kikai caldera, offers new insight into how massive caldera systems such as Yellowstone and Toba behave and may improve our ability to anticipate future activity.

What Makes Supervolcanoes So Powerful

Backdoored Telnyx PyPI package pushes malware hidden in WAV audio

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-stealing malware hidden inside a WAV file.

The supply-chain attack was observed by application security firms Aikido, Socket, and Endor Labs, and was attributed to TeamPCP based on the same exfiltration pattern and RSA key seen in previous incidents caused by the same actor.

TeamPCP is responsible for multiple recent supply-chain (e.g., Aqua Security’s Trivy vulnerability scanner, the open-source Python library LiteLLM) and wiper attacks targeting Iranian systems.

Fake VS Code alerts on GitHub spread malware to developers

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the Discussions section of various projects, to trick users into downloading malware.

The spammy posts are crafted as vulnerability advisories and use realistic titles like “Severe Vulnerability — Immediate Update Required,” often including fake CVE IDs and urgent language.

In many cases, the threat actor impersonates real code maintainers or researchers for a false sense of legitimacy.

/* */