GlassWorm’s latest campaign weaponizes a trusted OpenVSX extension to deliver a persistent RAT, targeting developers using VS Code, Cursor, Windsurf, and more. Here’s how the attack unfolds—and what you need to know to stay safe.
A new ClickFix malware campaign exploits fake CAPTCHAs and Node.js RATs delivered over Tor to steal cryptocurrency, using a professional Malware-as-a-Service model targeting Windows users.
A new wave of cybercrime uses fake software installers to infect computers with RATs and Monero miners, stealing resources and cashing in through stealthy tactics. REF1695’s campaign reveals the modern face of persistent, low-profile malware.
The Axios breach shows how social engineering attacks have scaled up, targeting open source maintainers and exposing millions to risk. This feature investigates the industrialization of these attacks and the urgent need for new defenses.
A new cyber threat, ResokerRAT, turns Telegram’s trusted messaging platform into a covert command center for hijacking Windows PCs. Learn how this malware evades detection and what it means for the future of digital security.
Attackers hijacked Axios’s npm account to publish malware-laden packages using a phantom dependency, exposing thousands of systems to a sophisticated remote access trojan. Discover how the breach happened, the technical details, and essential mitigation steps.
A brazen phishing campaign saw attackers impersonate CERT-UA and distribute a powerful Go-based RAT, AGEWHEEZE. With a Telegram confession and advanced persistence tricks, the CYBER SICKLE group demonstrates the evolving tactics of modern cybercrime.
Cybercriminals cloned Ukraine's cyber defense website to launch a phishing campaign distributing the powerful AGEWHEEZE RAT. The attack, claimed by 'Cyber Serp,' highlights rising threats and the importance of constant vigilance.
Axios, a core npm package with over 100 million weekly downloads, was hijacked in a sophisticated supply chain attack. Hackers used stolen credentials to publish malicious versions, delivering a stealthy RAT to developers' machines. The breach highlights the vulnerabilities of open-source ecosystems and the urgent need for robust security practices.
A sophisticated supply chain attack on the Axios npm package leveraged a compromised maintainer account to distribute cross-platform malware, exposing developer environments worldwide. Security experts warn this incident marks a new era of precision and stealth in open source threats.