August 2025 campaigns deliver kkRAT and Gh0st RAT variants via SEO poisoning, disabling antivirus to hijack crypto wallets.

Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...

The malicious JavaScript code ("bundle.js") injected into each of the trojanized package is designed to download and run ...

Tiny11 Builder runs a script that strips out most of Windows 11's apps, the telemetry, and the need for a Microsoft account.

A threat actor targeted low-skilled hackers, known as ‘script kiddies’ with a fake malware builder that secretly infected them with a backdoor to st ...

Cybercriminals use fake troubleshooting websites to trick Mac users into running terminal commands that install Shamos malware through ClickFix tactics.

For the first time in many years, the deletion specialist app Bleachbit released a new version. We take a closer look at ...

JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

Earlier this week, the Npm package manager suffered what may be its worst security incident to date. Unknown cybercriminals ...

Dozens of npm libraries, including a color library with over 2 million downloads a week, have been replaced with novel ...

The new variant of Docker-targeting malware skips cryptomining in favor of persistence, backdoors, and even blocking rivals ...

Microsoft is ending Windows 10 support this October, but this lightweight Tiny11 Builder is giving old PCs another way to ...