CSO Online

AI-powered polymorphic attack lures victims to phishing webpages

A new breed of malware uses various dynamic techniques to avoid detection and create customized phishing webpages.
The Hacker News

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...

Hackers are using LLMs to build the next generation of phishing attacks

What if a phishing page was generated on the spot?

Web skimming attacks target major payment networks

Web skimming campaigns use obfuscated JavaScript code to steal credit card data from checkout pages without detection by ...
SecurityWeek

‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks

Vulnerabilities in the NPM, PNPM, VLT, and Bun package managers could lead to protection bypasses and arbitrary code ...

Malicious GhostPoster browser extensions found with 840,000 installs

Another set of 17 malicious extensions linked to the GhostPoster campaign has been discovered in Chrome, Firefox, and Edge ...

AdGuard VPN's obfuscated TrustTunnel protocol goes open-source – here's what you need to know

AdGuard VPN has made its proprietary TrustedTunnel protocol open-source. Here's what you need to know about the protocol and ...
AOL

This 1 Hack Could Protect Your Information Online, According To Security Experts

Digital privacy is no longer a concern that’s reserved for the tech-savvy. The average internet user (ahem, billions of people globally) is online in some form every single day. Pew Research findings ...
Cybernews

North Korea is turning open-source projects into malware traps

North Korea is doubling down on a familiar playbook by weaponizing trust in open-source software and developer workflows. The ...