Tag: Malware

node-ipc npm Package Compromised With Credential Stealer

Malicious node-ipc versions 9.1.6, 9.2.3, and 12.0.1 were published to npm with…

Stephanie Adlam

KongTuke Uses Microsoft Teams Help-Desk Lures to Drop ModeloRAT

KongTuke moved from web-based ClickFix lures into external Microsoft Teams chats, using…

Stephanie Adlam

RubyGems Pauses Signups After Malicious Package Attack

RubyGems disabled new account registration after reports of hundreds of malicious packages,…

Stephanie Adlam

Mini Shai-Hulud Hits TanStack npm Packages With Signed Malware

Mini Shai-Hulud abused trusted publishing to ship malicious TanStack npm packages with…

Stephanie Adlam

TrickMo.C Android Banker Turns Phones Into Proxy Nodes

TrickMo.C moves Android banking malware control to TON/.adnl and adds proxy/pivot features,…

Stephanie Adlam

Checkmarx Jenkins Plugin Compromise Put CI Secrets at Risk

A rogue Checkmarx AST Scanner Jenkins plugin release put CI/CD source code…

Stephanie Adlam

cPanel CVE-2026-41940 Exploited to Drop Filemanager Backdoor

Attackers are exploiting cPanel & WHM CVE-2026-41940 to deploy a Filemanager backdoor,…

Stephanie Adlam

PamDOORa Linux PAM Backdoor Turns SSH Login Into a Trap

PamDOORa is a Linux PAM-based backdoor marketed for persistent OpenSSH access and…

Stephanie Adlam

Fake Claude Code Ads Push MacSync Stealer on macOS

A Google Ads malvertising campaign used fake Claude Code install pages and…

Stephanie Adlam

Fake OpenAI Hugging Face Repo: Infostealer Warning

HiddenLayer says a fake OpenAI-themed Hugging Face repository copied a privacy-filter model…

Stephanie Adlam

Is JDownloader Safe?

JDownloader says attackers changed several official website download links on May 6-7,…

Stephanie Adlam

QLNX RAT Targets Linux Developer and Cloud Credentials

Trend Micro reports QLNX, a Linux-focused Quasar RAT variant that combines persistence,…

Stephanie Adlam

AI Assistant

Hello! 👋 How can I help you today?