pull down to refresh

Malicious npm Packages Found Using Image Files to Hide Backdoor Codethehackernews.com/2024/07/malicious-npm-packages-found-using.html?m=1
123 sats \ 0 comments \ @ch0k1 19 Jul 2024 news
related
We Just Found Malicious Code in the Popular NPM Packagejdstaerk.substack.com/p/we-just-found-malicious-code-in-the
1497 sats \ 18 comments \ @kristapsk 8 Sep 2025 security
Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokensthehackernews.com/2026/02/malicious-npm-packages-harvest-crypto.html
30 sats \ 0 comments \ @winteryeti 25 Feb tech
Compromised npm package silently installs OpenClaw on developer machineswww.csoonline.com/article/4135449/compromised-npm-package-silently-installs-openclaw-on-developer-machines.html
422 sats \ 4 comments \ @winteryeti 24 Feb AI
Bogus npm Packages Used to Trick Software Developers into Installing Malwarethehackernews.com/2024/04/bogus-npm-packages-used-to-trick.html?m=1
52 sats \ 1 comment \ @ch0k1 28 Apr 2024 security
Inside the failed attempt to backdoor SSH globally — that got caught by chancedoublepulsar.com/inside-the-failed-attempt-to-backdoor-ssh-globally-that-got-caught-by-chance-bbfe628fafdd
2045 sats \ 23 comments \ @ch0k1 1 Apr 2024 security
Snyk security researcher deploys malicious NPM packages targeting Cursor.comsourcecodered.com/snyk-malicious-npm-package/
134 sats \ 0 comments \ @hn 14 Jan 2025 tech
Experts found 3 malicious packages hiding crypto miners in PyPi repositorysecurityaffairs.com/156897/malware/malicious-packages-pypi-repository.html
813 sats \ 2 comments \ @Gian 5 Jan 2024 security
Nearly 20% of Docker Hub Repositories Spread Malware & Phishing Scamsjfrog.com/blog/attacks-on-docker-with-millions-of-malicious-repositories-spread-malware-and-phishing-scams/
164 sats \ 1 comment \ @nym 30 Apr 2024 security
Over 4,000 backdoors hijacked by registering expired domainswww.bleepingcomputer.com/news/security/over-4-000-backdoors-hijacked-by-registering-expired-domains/
411 sats \ 4 comments \ @ch0k1 11 Jan 2025 security
The XZ Backdoor: Everything You Need to Knowwww.wired.com/story/xz-backdoor-everything-you-need-to-know/#intcid=recommendations_wired-bottom-recirc-v4_cf3e2538-ba66-4408-a9c0-3af3ee784b35_similar2-3_fallback_cral2-2
74 sats \ 0 comments \ @nym 25 Apr 2024 security
Finding packages affected by xz vuln on Nix
3055 sats \ 6 comments \ @jurraca 30 Mar 2024 NixOS
Black Cat Hacker Group with Fake Notepad++ Sites to Install Malware & Steal Datacybersecuritynews.com/black-cat-hacker-group-with-fake-notepad-sites/
193 sats \ 1 comment \ @winteryeti 8 Jan tech
firefox-patch-bin, librewolf-fix-bin and other AUR packages contain malwarelists.archlinux.org/archives/list/aur-general@lists.archlinux.org/thread/7EZTJXLIAQLARQNTMEW2HBWZYE626IFJ/
408 sats \ 2 comments \ @k00b 24 Jul 2025 security
SesameOp: Novel backdoor uses OpenAI Assistants API for command and controlwww.microsoft.com/en-us/security/blog/2025/11/03/sesameop-novel-backdoor-uses-openai-assistants-api-for-command-and-control/
222 sats \ 0 comments \ @0xbitcoiner 4 Nov 2025 AI
Apache bRPC Vulnerability Enables Remote Command Injectioncybersecuritynews.com/apache-brpc-vulnerability-2/
160 sats \ 0 comments \ @ch0k1 21 Jan news
Hacking campaign compromised at least 16 Chrome browser extensionssecurityaffairs.com/172491/hacking/chrome-browser-extensions-compromise.html
266 sats \ 0 comments \ @nym 1 Jan 2025 security
PoC Exploit Released For OpenSSH Arbitrary Code Execution Vulnerabilitycybersecuritynews.com/regresshion-code-execution-vulnerability/
195 sats \ 0 comments \ @ch0k1 7 Jan 2025 security
The Silent, Fileless Threat of VShellwww.trellix.com/blogs/research/the-silent-fileless-threat-of-vshell/
340 sats \ 1 comment \ @optimism 25 Aug 2025 security
The importance of minimizing dependencies in Bitcoin Corebrink.dev/blog/2025/09/19/minimizing-dependencies/
4327 sats \ 8 comments \ @schmidty 19 Sep 2025 bitcoin
Patch Tuesday brings 90 new Microsoft CVEs, six already under exploitwww.theregister.com/2024/08/14/august_patch_tuesday/
395 sats \ 0 comments \ @dontforgetthekeys 14 Aug 2024 security
Android Trojan Campaign Uses Hugging Face Hosting for RAT Payload Deliverywww.bitdefender.com/en-us/blog/labs/android-trojan-campaign-hugging-face-hosting-rat-payload
130 sats \ 0 comments \ @0xbitcoiner 29 Jan AI