The campaign spans npm, Packagist, Go, and Chrome, using obfuscated JavaScript loaders and VS Code tasks to deliver malware.
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
Separate but similar campaigns described by Microsoft and Trend Micro use malicious zip files to spread malware via social ...
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
The latest email threats: real Microsoft login phishing, device code scams with a kill switch, split-click attacks, and the ...
StegoAd Microsoft Edge extensions malware affected up to 2.6 million users after the company removed 119 add-ons that hid ...
Learn how websites detect VPNs through IP reputation, DNS leaks, WebRTC, and browser fingerprints—and seven practical ways to reduce tracking.
Securonix says PureLogs infection starts with a fake PDF JavaScript file and uses PowerShell, fileless .NET loading, and LOLBins.
Kansas Attorney General Kris Kobach has filed a lawsuit accusing Aetna Inc. of “misappropriating” state funds through a mechanism found to violate ...
Residents at the Walker County Hospital District Board of Managers' June meeting accused the board of hiding its true ...