Developer Tech

Stealit malware exploits new Node.js feature in attacks

Cybersecurity researchers have discovered a new ‘Stealit’ info-stealing malware campaign that exploits an experimental Node.js feature.
The Hacker News

Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers

Fortinet warns Stealit malware uses Node.js SEA and fake installers to deliver stealers, RATs, and persistence.

New FileFix attack uses cache smuggling to evade security software

A new variant of the FileFix social engineering attack uses cache smuggling to secretly download a malicious ZIP archive onto ...