ComicForm phishing since April 2025 targets Belarus, Kazakhstan, Russia using Formbook malware, evading Microsoft Defender.

A cryptocurrency thief got into the npm account of a hard-working developer via spearphishing. node.js packages with billions ...

An infostealer particularly focused on stealing cryptocurrency wallet data from macOS, Windows and Linux users has been ...

A rare in-the-wild FileFix campaign has been observed by cybersecurity researchers, which hides a second-stage PowerShell ...

A JavaScript supply chain attack has delivered a crypto-clipper via 18 npm packages; Ledger’s CTO has warned ...

Ledger CTO cautions that there is an NPM supply chain attack on the rampage. He encouraged users to cease risky on-chain ...

A hacker laced 18 popular npm packages with cryptocurrency stealing malware after socially engineering the developer into ...

Malware hidden in widely used libraries like chalk and debug hijacked crypto transactions via browser APIs, exposing deep ...

Mohammedia – A new malware strain named ModStealer has emerged, posing a significant threat to cryptocurrency users. This ...

An escalating npm supply chain attack has compromised dozens of foundational JavaScript packages to spread malware and drain crypto wallets.

Halud, is compromising hundreds of NPM packages, spreading self-replicating malware, exfiltrating data, and turning private ...

After warning 9to5Mac last month about undetectable Mac malware hidden in a fake PDF converter site, Mosyle, a leader ...