Malicious NPM packages fetch infostealer for Windows, Linux, macOS

Ten malicious packages mimicking legitimate software projects in the npm registry download an information-stealing component ...

Infostealer for Windows, macOS and Linux found in ten packages on npm

The npm packages were available since July, have elaborately obfuscated malicious routines, and rely on a fake CAPTCHA to ...

From Job Offers to Crypto Theft: Latest North Korean Hacker Campaigns Exposed

The North Korean threat actor behind the Contagious Interview campaign has started combining features from two of its malware ...

North Korea Weaponizes Blockchain for Stealth Hacks, Poses as Job Recruiters

North Korean threat group Famous Chollima is using blockchain technology to hide malware payloads in smart contracts, which marks the first documented case of a nation-state actor adopting ...