North Korean threat actors are escalating the PolinRider supply chain attack across Go, Packagist, and npm package ...
Malicious jscrambler 8.14.0 runs hidden binaries during npm install on Windows, macOS, and Linux, with no fix available as of ...
The campaign spans npm, Packagist, Go, and Chrome, using obfuscated JavaScript loaders and VS Code tasks to deliver malware.
North Korean hackers are targeting open source software developers with a backdoor and an information stealer as part of a ...
A threat actor has been exploiting CVE-2026-48558, a critical SimpleHelp vulnerability, to drop TaskWeaver and Djinn Stealer ...
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
PureLogs Stealer uses fake PDF JavaScript files and Google's Blogger pages in the VEIL#DROP campaign, enabling fileless ...
Threat actors are abusing Microsoft Teams voice calls by impersonating corporate IT support staff to trick employees into ...
Today, Hyperiux - a conversion focused digital experience engineering agency, announced the public launch of Vault, a ...
Hackers are exploiting a recently disclosed critical vulnerability (CVE-2026-48558) in SimpleHelp to deploy Djinn Stealer, a previously undocumented cross-platform information stealer targeting ...
Jacob Misiorowski will get an even longer break from pitching as the Brewers closely monitor his innings.