The npm packages were available since July, have elaborately obfuscated malicious routines, and rely on a fake CAPTCHA to ...

Ten malicious packages mimicking legitimate software projects in the npm registry download an information-stealing component ...

Recently, security researchers Socket found 10 packages on npm targeting software developers, specifically those who use the ...

Ten typosquatted npm packages (Jul 4, 2025) delivered a 24MB PyInstaller info stealer using 4 obfuscation layers; ~9,900 ...

A wave of advanced phishing campaigns is exploiting a novel combination of social engineering and browser-cache manipulation to infiltrate systems without triggering typical security alerts.The ...

Discord users and gamers are under threat because of an open-source penetration testing tool RedTiger which creates a dangerous info-stealer.

Attackers are using the open-source red-team tool RedTiger to build an infostealer that collects Discord account data and ...

ChatGPT Atlas is a free internet browser that can regurgitate browser history, provide writing help and complete basic ...

Cybersecurity researchers at Google’s Threat Intelligence Group (GTIG) have uncovered a sophisticated hacking campaign by a North Korean state-linked group ...

Alarms raised again as a recent cybersecurity report released by Cisco Talos claims that a new campaign by North Korean ...

North Korean state-sponsored threat actors are now using public blockchains to host malicious code and deploy malware on ...

The North Korean threat actor linked to the Contagious Interview campaign has been observed merging some of the functionality ...