News
August 2025 campaigns deliver kkRAT and Gh0st RAT variants via SEO poisoning, disabling antivirus to hijack crypto wallets.
"Each published package becomes a new distribution vector: as soon as someone installs it, the worm executes, replicates, and ...
Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...
Reports surfaced that the widely used npm package @ctrl/tinycolor had been compromised by Wormable Malware as part of a ...
On September 5, 2025, GitGuardian discovered GhostAction, a massive supply chain attack affecting 327 GitHub users across 817 ...
The malware tricks IT personnel into downloading malicious GitHub Desktop installers with GPU-gated decryption targeting ...
Using these self-hosted services has been made easier and more convenient thanks to their Android apps and shortcuts.
A threat actor targeted low-skilled hackers, known as ‘script kiddies’ with a fake malware builder that secretly infected them with a backdoor to st ...
Microsoft releases PowerToys 0.94, adding settings search, shortcut conflict detection, and accessibility updates for ...
Typically, converting a file from one format to another means either installing heavy desktop software or uploading it to an external server. VERT takes a different approach by using WebAssembly (WASM ...
In a supply chain attack, the trending npm package, @ctrl/tinycolor, was in the target. Dastardly versions steal secrets through TruffleHog scanning.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback