How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

Python infostealers are spreading from Windows to macOS via Google Ads, ClickFix lures, and fake installers to steal credentials and financial data.

A newly discovered toolkit called DKnife has been used since 2019 to hijack traffic at the edge-device level and deliver ...

Researchers have revealed that bad actors are targeting dYdX and using malicious packages to empty its user wallets.

Hackers are hunting for vulnerable endpoints to deploy Python malware.

From Russian GRU operations to Chinese espionage campaigns, AI is transforming cyber warfare. But that change is a bit more ...

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX ...

Hackers hijack dormant Snapcraft apps to spread cryptocurrency-stealing malware Attackers exploit expired domains to reset passwords and update snaps with malicious code Malware mimics wallet apps, ...

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.

Open source malware surged 73% in 2025, with npm as a key target with rising risks in software supply chains and developer environments.