Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.
Jamf says the Rust-based PamStealer targets Apple Silicon Macs, steals browser, wallet, Keychain, and clipboard data, and persists.
Researchers have found a never-before-seen piece of macOS malware that combines a series of clever tradecraft to infect Macs ...
A malicious dependency the attackers added to over 140 Mastra packages fetches a payload targeting cryptocurrency extensions. The North Korean state-sponsored threat actor Sapphire Sleet is behind the ...
Veteran sharpshooter CJ McCollum and the Atlanta Hawks have inked a jaw-dropping contract extension that’s shaking up the NBA. Find out how this move could flip the script in the Eastern Conference.
Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
Steam is one of the most popular storefronts in PC gaming, but it turns out that the Steam Workshop might presently be spreading malware to users.
A previously undocumented macOS infostealer has surfaced during our routine threat hunting. We initially tracked it as NukeChain, but shortly before publication, the malware’s operator panel became ...
Making commentary videos on a Mac is a thorny path! I wrote an article last time about how fun video production is, but... I was searching for some kind of auxiliary library that could nicely place ...
A malicious npm package posing as an OpenClaw AI installer has been deployed to steal passwords, cryptocurrency wallets, and sensitive data from macOS users. The malware, nicknamed GhostLoader, ...
Assessing the biomass on longline setups based on acoustic data hold significant potential for improving the efficiency and accuracy of monitoring and management of aquaculture setups. Traditional ...