Scenes from a pared-down Preakness at Laurel Park

Laurel Park hosted the 151st Preakness Stakes with attendance capped at 4,800 due to condemned grandstands. The Preakness ...
SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...

Gov. Josh Shapiro says Pennsylvania has more major corporate investments on the way

Gov. Josh Shapiro planned to watch a little golf at the PGA Championship on Saturday, but he reserved most of his time for ...

Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

Major Canadian online privacy company plans to leave country if lawful access bill passes

A Canadian company providing online privacy and security tools says it would leave the country over a federal bill that could ...

OpenAI says no user data stolen after supply-chain hackers accessed employee devices

OpenAI said it found no evidence that user data was accessed after a supply-chain attack involving the TanStack npm library.
NewsBytes

OpenAI says no user data compromised in supply-chain security incident

OpenAI reported no user data compromise after a supply-chain attack targeting the TanStack npm library, part of the broader ...
Morning Overview on MSN

The TanStack supply chain attack poisoned 160 npm and PyPI packages — reaching OpenAI, Mistral AI, and UiPath through compromised build pipelines

On May 11, 2026, a self-replicating worm called Mini Shai-Hulud quietly slipped into 42 widely used TanStack open-source ...
The Hacker News

Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...
Hosted on MSN

MDCPS Streamlines Access with a New 2026 Gateway for Schoology, i-Ready, IXL, and Sora

As the 2026-2027 school year approaches, Miami-Dade County Public Schools (MDCPS) is pushing a major workflow upgrade: a ...
winbuzzer.com

OpenAI Confirms TanStack Breach Stole Repo Credentials

A poisoned open-source dependency let attackers breach two OpenAI employee devices and steal credentials from a limited set of its internal source code repositories, OpenAI confirmed in a May 14, 2026 ...