The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.
Microsoft

Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hosting environments

Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...
The Hacker News

Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...
Nature

FcαRI-positive liver Kupffer cells: Reappraisal of the function of immunoglobulin A in immunity

Despite the well-recognized involvement of immunoglobulin (Ig) A in mucosal immunity, the function of its receptor, FcαRI (CD89), is poorly understood. The ability of FcαRI to activate leukocytes ...