"CanisterWorm" supply chain malware attacks npm

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, worm-like malware across dozens of packages, security firms say. Named CanisterWorm ...
Opinion
Native News OnlineOpinion

The Dark Side

Guest Opinion With every technological advancement criminals find a way to advance their crimes with it Technological advancements promise to make our lives better and often make us want something ...

iPhone users in South Africa a prime target

Phone users in South Africa have become potentially lucrative targets to cybercriminals using a new attack called “DarkSword.” ...
Cyber Daily

Code security platform Trivy compromised by malicious packages

Unidentified threat actors have successfully compromised the GitHub repository for “all-in-one” security scanner Trivy, pushing a malicious update to downstream users that can deploy an infostealer.

VoidStealer malware steals Chrome master key via debugger trick

An information stealer called VoidStealer uses a new approach to bypass Chrome's Application-Bound Encryption (ABE) and ...