Separate but similar campaigns described by Microsoft and Trend Micro use malicious zip files to spread malware via social ...
North Korean threat actors are escalating the PolinRider supply chain attack across Go, Packagist, and npm package ...
Cybersecurity researchers have disclosed details of a multi-stage malware campaign that uses batch scripts as a pathway to deliver various encrypted remote access trojan (RATs) payloads that ...
North Korean hackers are targeting open source software developers with a backdoor and an information stealer as part of a ...
The campaign spans npm, Packagist, Go, and Chrome, using obfuscated JavaScript loaders and VS Code tasks to deliver malware.
A threat actor has been exploiting CVE-2026-48558, a critical SimpleHelp vulnerability, to drop TaskWeaver and Djinn Stealer ...
Jamf Threat Labs has issued a report on new malware that users of the third-party clipboard manager Maccy need to be aware of ...
Researchers have found a never-before-seen piece of macOS malware that combines a series of clever tradecraft to infect Macs ...
A new Mac infostealer dubbed PamStealer impersonates the open-source Maccy clipboard manager to steal passwords and more.
A SimpleHelp authentication flaw is being exploited to deploy Djinn Stealer, a cross-platform malware targeting cloud, ...
A new piece of malware is spreading through the popular tinycolor NPM library and more than 300 other packages, some of which belong to CrowdStrike. Recently, there were reports of the tinycolor npm ...
Explore the latest news and expert commentary on Application Security, brought to you by the editors of Dark Reading ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results