Phishing scheme tricks people with free roadside kit

A free roadside safety kit is being offered under the auspices of AAA, but it's acvtual a phishing scheme that not only levies a "shipping charge," but uses bank card numbers for unrelated items. The ...
CSO Online

Malicious packages in npm evade dependency detection through invisible URL links: Report

Researchers outline how the PhantomRaven campaign exploits hole in npm to enable software supply chain attacks.

BiDi Swap: The bidirectional text trick that makes fake URLs look real

Attackers are abusing bidirectional text to make fake URLs look real, reviving a decade-old browser flaw now fueling new ...