CSO Online

Macs go phishing as GitHub impostors drop Atomic stealer

OS users are being tricked in the ongoing campaign with fake GitHub pages that deliver the Atomic infostealer.

GitHub moves to tighten npm security amid phishing, malware plague

GitHub, which owns the npm registry for JavaScript packages, says it is tightening security in response to recent attacks.
The Hacker News

DPRK Hackers Use ClickFix to Deliver BeaverTail Malware in Crypto Job Scams

DPRK used ClickFix to deliver compiled BeaverTail to crypto marketers; Windows build used password-protected archives, ...