💙 What a day! #GitHubCopilotDevDays – #Mumbai (#Apr26MTP) was a full house at @Microsoft Mumbai 🇮🇳 AI‑native engineering, agentic workflows, and real‑world Copilot usage all in one place. Here’s a quick recap of the sessions 👇🧵 #GitHubCopilot #mumtechup

🇮🇳 Tata Electronics Internal Data Allegedly Exposed on Dark Web A threat actor is advertising what appears to be a large internal dataset allegedly associated with Tata Electronics, claiming access to more than 630 GB of data across multiple internal systems and file shares. Based on the screenshots, the exposed content may include: * Internal server directories and infrastructure information * Software repositories and deployment packages * SAP-related files and configurations * Manufacturing and production documentation * Internal audit findings and quality control records * Operational procedures and process documentation * Windows event and security logs * Employee names and responsibility assignments * Internal network and workstation identifiers The screenshots suggest the data originates from manufacturing and enterprise environments, potentially affecting production, quality assurance, engineering, and IT operations. Potential risks include: * Exposure of internal infrastructure details * Targeted phishing against employees and contractors * Supply chain intelligence gathering * Operational disruption attempts * Credential harvesting opportunities * Increased risk of lateral movement in future attacks While no customer data is visible in the screenshots provided, the presence of internal audit records, software packages, server information, and event logs could provide valuable reconnaissance material for threat actors. At the time of writing, the authenticity, scope, and current accessibility of the advertised dataset have not been independently verified. Analyst Note: Manufacturing organizations are increasingly targeted because internal operational data can be leveraged for espionage, ransomware operations, supply chain attacks, and long-term access campaigns. Even seemingly routine audit reports and system logs can reveal critical information about internal processes and infrastructure. #DDW #Intelligence #DarkWeb #TataElectronics

‼️🚨 BREAKING: ServiceNow has been breached. Customers are reporting unauthorised access to their instances. One customer states their security team reported this vulnerability to them, and they closed the case twice, saying they had already known since the 7th of April.

BIG DAY! @voidzerodev is joining @cloudflare 🚀 before anything else: @vite_js is very much remaining open source, and will always remain that way, with robust ongoing investment we're also going to keep making cloudflare the best place for building applications! thrilled to have @evanyou and team join us to help us on that mission. blog.cloudflare.com/voidzero…

Today, VoidZero joins Cloudflare. Vite remains MIT, vendor-neutral, and stewarded by the same wider team. The same goes for Vitest, Rolldown, and Oxc. Cloudflare is also committing $1M to an OSS fund to support independent development in the Vite ecosystem.

🚨 UPDATE: Red Hat has now published RHSB-2026-006 confirming the supply chain compromise affecting multiple npm packages under the redhat-cloud-services namespace.

⚠️ We issued 2 updated public #ICS Advisories. These advisories provide info about current security issues, vulnerabilities, & exploits surrounding ICS. More at cisa.gov/news-events/ics-adv…

Are you currently hiring for a role that includes using Node.js? Reply with a link to the opening and any relevant context. If you're not, we'd appreciate a repost for visibility 💚

पण आपण थांबणार नाही. 🛠️🚀 #CFP for Build Localhost- #Mumbai is OPEN! आमची माणसं लय भारी! मुंबईकरांनो, मैदानात उतरा आता! Submit your talks here:👇 sessionize.com/mumtechup

Global summits land in #Mumbai with corporate tunnel vision, prioritizing sponsor alignment over the local ecosystem. Meanwhile, independent folks sweating over free venues & weekend workshops out of pocket get sidelined. ग्राउंड लेव्हलवरचे मुंबईकर कुठे आहेत, @linuxfoundation?

Famous Chollima, the North Korean threat group known for fake job interview lures, appears to have used a PHP/Packagist package path in a targeted developer lure. We found the loader in a compromised Laravel package, on a branch that could be installed through Composer. It was appended after a normal Tailwind config and used TRON, Aptos, and BNB Smart Chain RPC infrastructure to retrieve and run remote JavaScript. Developers should be careful with “interview task” or “take-home project” requests that ask them to clone a repo, check out a specific branch, or install an exact dev dependency.

Microsoft has identified a npm supply chain compromise impacting 90 redhat-cloud-services/* packages, including patch-client 4.0.4, insights-client 4.0.4, rbac-client 9.0.3, host-inventory-client 5.0.3, frontend-components 7.7.2, and others. The payload is a self-propagating worm that infects other npm packages and self-publishes. Each compromised package adds a malicious preinstall hook, embedding an index.js script in the package.json that silently executes “node index.js” during installation, downloads Bun, and runs a payload that steals secrets from npm, GitHub, Amazon Web Services (AWS), and Secure Shell (SSH). The added code bloats index.js from ~8KB to ~4.3MB, acting as a heavily obfuscated ROT-9 eval loader. If any of the compromised packages are installed, users and organizations should assume compromise, rotate credentials, revert to a previously trusted version, and block compromised packages. Identified compromised npm packages have been taken down, and we continue to work with the npm team. Microsoft continues to investigate this attack and will publish updates as more information is available.

What I’m hearing: Instagram’s Trust and Safery org absolutely gutted the last few weeks. ~60% of the org gone - between layoffs and forced reassignments to data labelling. All while “AI maxxing” pushed a bunch of bugs to prod. And hence why today’s massive Insta account takeover happening.

Running AI agents is getting easier… Securing them? That’s where it gets interesting ⚠️ Subscribe to our @YouTube channel to find out at 9.00 pm tonight 👇 youtube.com/@HackerspaceMumb…