Analyst2073d ago

Node-ipc Package Infected with Credential-Stealing Malware

A malicious update to the widely-used node-ipc library has infected thousands of projects with credential-stealing malware, posing a significant supply-chain risk for developer environments and CI systems. With over 690,000 weekly downloads, this single compromised library could be exfiltrating sensitive data from countless unsuspecting users.

https://osintsights.com/node-ipc-package-infected-with-credential-stealing-malware?utm_source=mastodon&utm_medium=social

#SupplyChain #CredentialStealing #Malware #Nodeipc #Npm

Node-ipc Package Infected with Credential-Stealing Malware

Learn how the node-ipc package was infected with credential-stealing malware and take immediate action to secure your developer environments now.

OSINTSights
Analyst207Apr 10

CPUID Website Compromised, Serves Malware via HWMonitor Downloads

For six hours, unsuspecting visitors to the CPUID website were put at risk of having their passwords stolen when malicious malware was served in place of the HWMonitor tool they were trying to download. This alarming security breach highlights the vulnerability even trusted sites can have, leaving users to wonder if their…

https://osintsights.com/cpuid-website-compromised-serves-malware-via-hwmonitor-downloads?utm_source=mastodon&utm_medium=social

#SupplyChainAttack #MalwareOperations #CredentialStealing #Hwmonitor #Cpuid

CPUID Website Compromised, Serves Malware via HWMonitor Downloads

CPUID website hacked, serving malware via HWMonitor downloads, putting user data at risk. Learn how to stay safe and protect yourself now.

OSINTSights
Bob CarverApr 6
LinkedIn Account Attack Alert Issued For 1.2 Billion Users https://www.forbes.com/sites/daveywinder/2026/04/04/linkedin-account-attack-alert-issued-for-12-billion-users/ #cybersecurity #LinkedIn #socialengineering #AccountTakeover #credentialstealing
acrypthash👨🏻‍💻Dec 12, 2023

This morning I will be downloading a copy of one of our DCs so that I can try and break it 😈

#security #Zerologon #credentialstealing

ITSEC NewsAug 31, 2020
Charming Kitten Returns with WhatsApp, LinkedIn Effort - The Iran-linked APT is targeting Israeli scholars and U.S. government employees in a credential-st... https://threatpost.com/charming-kitten-whatsapp-linkedin-effort/158813/ #u.s.governmentemployees #credentialstealing #israelischolars #charmingkitten #spearphishing #websecurity #government #linkedin #whatsapp #malware #irán #apt
Charming Kitten Returns with WhatsApp, LinkedIn Effort

The Iran-linked APT is targeting Israeli scholars and U.S. government employees in a credential-stealing effort.

Threatpost - English - Global - threatpost.com
ITSEC NewsMar 17, 2020
Activities of a Nigerian Cybercriminal Uncovered - Rise and fall of a Nigerian cybercriminal called ‘Dton,’ who made hundreds of thousands of dollars... more: https://threatpost.com/activities-of-a-nigerian-cybercriminal-uncovered/153751/?utm_source=rss&utm_medium=rss&utm_campaign=activities-of-a-nigerian-cybercriminal-uncovered #criminalmarketplace #credentialstealing #nigerianbecscams #cybercriminals #cyberattack #keyloggers #malware #nigeria #hacks #email #rat
Activities of a Nigerian Cybercriminal Uncovered

Rise and fall of a Nigerian cybercriminal called ‘Dton,’ who made hundreds of thousands of dollars in a 7-year campaign, outlined in new report.

Threatpost - English - Global - threatpost.com