* Dozens of Malicious NPM Packages Discovered Harvesting System and Network Intelligence

* TikTok Becomes New Vector for ClickFix Malware Campaign Targeting User Credentials

* Australian Cyber Agency Warns of Russian GRU Targeting Western Logistics and Tech Companies

* Apple Blocks Record $9 Billion in Fraudulent Transactions Across Five-Year Security Crackdown

https://socket.dev/blog/60-malicious-npm-packages-leak-network-and-host-data

https://www.trendmicro.com/en_us/research/25/e/tiktok-videos-infostealers.html

https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/russian-gru-targeting-western-logistics-entities-and-technology-companies

https://www.apple.com/newsroom/2025/05/the-app-store-prevented-more-than-9-billion-usd-in-fraudulent-transactions/

This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com