The campaign spans npm, Packagist, Go, and Chrome, using obfuscated JavaScript loaders and VS Code tasks to deliver malware.
Securonix uncovers the Veil#Drop malware framework, which abuses compromised websites and Google Blogspot to deploy the PureLog information stealer.
The latest email threats: real Microsoft login phishing, device code scams with a kill switch, split-click attacks, and the ...
Many organizations assume that deploying CAPTCHA is enough to stop automated attacks.Yet security teams continue to encounter a frustrating reality: bots are st ...
North Korean hackers are targeting open source software developers with a backdoor and an information stealer as part of a ...
Separate but similar campaigns described by Microsoft and Trend Micro use malicious zip files to spread malware via social ...
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
Security tooling is not written in a single language. Python powers most automation. C sits at the exploit layer. PowerShell ...
StegoAd Microsoft Edge extensions malware affected up to 2.6 million users after the company removed 119 add-ons that hid ...
Securonix says PureLogs infection starts with a fake PDF JavaScript file and uses PowerShell, fileless .NET loading, and LOLBins.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results