Researchers uncovered 27 malicious npm packages used over five months to host phishing pages that steal credentials from ...
A new Shai-Hulud npm strain and a fake Jackson Maven package show how attackers abuse trusted dependencies to steal secrets ...
A malicious package in the Node Package Manager (NPM) registry poses as a legitimate WhatsApp Web API library to steal ...
A newly discovered third variant of the Shai Hulud malware is raising fresh concerns about the security of the open-source software supply chain, as researchers warn that the latest version shows more ...
Trust Wallet believes the compromise of its web browser to steal roughly $8.5 million from over 2,500 crypto wallets is ...
Security researchers discovered a fake WhatsApp API package on npm that steals developer credentials, raising fresh alarms ...
12don MSNOpinion
Poisoned WhatsApp API package steals messages and accounts
A malicious npm package with more than 56,000 downloads masquerades as a working WhatsApp Web API library, and then it steals ...
The lotusbail NPM package steals WhatsApp credentials, messages, and contacts, and provides persistent access to the victims’ accounts.
Shai-Hulud 2.0 infected over 12,000 systems and exposed Trust Wallet keys that were used to steal $8.5 million from 2,520 ...
Shai Hulud is a malware campaign first observed in September targeting the JavaScript ecosystem that focuses on supply chain ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback