Threat Intelligence

Phishing Attack Leverages 27 Malicious npm Packages to Snare Credentials

Dec 29, 2025 88 views

A sophisticated spear-phishing campaign has infiltrated the npm registry, using over two dozen malicious packages as...

Read More

Vulnerability

OneLogin API Vulnerability Allowed Secret Theft, App Impersonation

Oct 1, 2025 225 views

A critical flaw in the One Identity OneLogin platform could have allowed attackers to pilfer sensitive OpenID Connect...

Read More

Phishing

Phishers Hide Behind Proofpoint, Intermedia to Snag Microsoft 365 Credentials

Jul 31, 2025 769 views

A sophisticated phishing campaign is using legitimate link wrapping services from Proofpoint and Intermedia to cloak...

Read More

Supply Chain Attack

Fake Solana Tool on PyPI Targeted Developers, Stole Source Code

May 13, 2025 623 views

A malicious package disguised as a Solana-related utility was found lurking on the Python Package Index (PyPI),...

Read More

Malware

North Korean Hackers Upgrade OtterCookie Malware to Target Crypto Wallets

May 9, 2025 375 views

A North Korean hacking group known for its "Contagious Interview" campaign is now wielding a more sophisticated version...

Read More

Malware

Golden Chickens Malware Upgrade Targets Crypto Wallets, Browser Data

May 5, 2025 435 views

The cybercrime group Golden Chickens is back with an evolved malware strain, TerraStealerV2, designed to pilfer browser...

Read More

Supply Chain Attack

PyPI Package Caught Hijacking Crypto Trades on MEXC

Apr 15, 2025 312 views

A malicious package discovered on the Python Package Index (PyPI) was designed to intercept cryptocurrency trades made...

Read More

Email Security

Phishing Attacks Now Verify Your Email Before Stealing Credentials

Apr 14, 2025 329 views

A sophisticated phishing campaign is making it harder to spot scams, with attackers now checking if your email address...

Read More