Security researchers have uncovered malicious npm packages posing as PostCSS tools that deploy a Windows remote access trojan, highlighting ongoing software supply chain threats targeting developers and open source ecosystems.
Researchers uncover a phishing campaign by North Korea linked ScarCruft hackers using fake Microsoft security alerts to deploy NarwhalRAT malware through malicious ZIP and LNK files.
North Korea linked Lazarus APT Group has deployed a stealthy memory only remote access trojan called RemotePE, designed to avoid detection and maintain long term access to targeted organizations.
Researchers reveal Iran linked MuddyWater hackers used a new MuddyViper backdoor in cyber espionage attacks targeting academia, technology, manufacturing and public sector organizations.
Security researchers detail KongTuke’s CrashFix campaign, which used fake browser crash pages and a cloned uBlock extension to deploy ModeloRAT through social engineering tactics.
