Cybersecurity researchers have discovered a set of seven npm packages published by a single threat actor that leverages a ...
A new malware campaign has been observed built on seven npm packages and using cloaking techniques and fake CAPTCHAs, ...
A heavily obfuscated and malicious NPM project is used to steal Discord user tokens and browser information from unsuspecting users. NPM is a JavaScript package manager that allows developers to ...
Security researchers at Sonatype have discovered today an npm package (JavaScript library) that contains malicious code designed to steal sensitive files from a user's browsers and Discord application ...
Seven packages published on the Node Package Manager (npm) registry use the Adspect cloud-based service to separate ...
Cryptopolitan on MSN
Cybersecurity researchers reveal 7 npm packages published by a single threat actor targeting crypto users
Cybersecurity researchers have revealed a set of seven npm packages published by a single threat actor. These packages use a ...
The npm security team has removed a malicious JavaScript library from the npm portal that was designed to steal sensitive files from an infected users' browser and Discord application. The malicious ...
In another vast software supply-chain attack, the password-stealer is filching credentials from Chrome on Windows systems via ChromePass. A credentials-stealing code bomb that uses legitimate password ...
A malware campaign presents fake websites that can check if a visitor is a victim or a researcher, and then proceed accordingly to defraud or evade ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback