Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...
The Hacker News

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
The Sheboygan Press

ANY.RUN Releases Malware Trends Report for Q4 2025, Highlighting Key Threat Landscape Shifts

DUBAI, DUBAI, UNITED ARAB EMIRATES, January 7, 2026 /EINPresswire.com/ — ANY.RUN, a leading provider of interactive malware analysis and threat intelligence ...
Forbes

AI Agents Are Employees Now—Here’s How To Manage Them

Ransomware used to be a popular trend in cyberattacks, but while cyberattacks are still pervasive, attackers have simplified their methods. New research from cyber risk company Resilience found that ...
cryptonews

Hackers Hijack Snap Store Accounts to Push Crypto-Stealing Malware on Linux

The attacks rely on expired domains and email addresses to push malicious updates. Hackers are exploiting trusted Snap Store packages to steal cryptocurrency by hijacking existing publisher accounts.