GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions counting more ...
Yahoo Finance

Crypto transactions at risk as large attack hits industry

Hackers have poisoned popular JavaScript packages with crypto-stealing malware, potentially threatening millions of developers and users worldwide. The large-scale attack targeted a prominent ...
heise online

Popular JavaScript package is: Malware through supply chain attack

Maintainer Jordan Harband writes on Bluesky that attackers had taken over the account of another project manager. Versions 3.3.1 and 5.0.0 of the package are affected. Both versions were apparently ...
Digital Trends

New JavaScript attack infects your phone and changes your router's DNS settings

Security firm Trend Micro has discovered an attack on home routers that involves malicious JavaScript, a mobile website, and a mobile device such as a smartphone. This attack has been taking place ...