SecurityWeek

Chrome, Edge Extensions Caught Tracking Users, Creating Backdoors

A threat actor has published over a hundred malicious extensions that can track and profile Chrome and Microsoft Edge users ...
Dark Reading

DPRK's 'Contagious Interview' Spawns Malicious Npm Package Factory

North Korean attackers have delivered more than 197 malicious packages as part of ongoing state-sponsored activity to ...
The Hacker News

ShadyPanda Turns Popular Browser Extensions with 4.3 Million Installs Into Spyware

ShadyPanda abused browser extensions for seven years, turning 4.3M installs into a multi-phase surveillance and hijacking ...
Security Boulevard

Russian-Backed Threat Group Uses SocGholish to Target U.S. Company

The Russian state-sponsored group behind the RomCom malware family used the SocGholish loader for the first time to launch an attack on a U.S.-based civil engineering firm, continuing its targeting of ...

Crypto Thieves Steal Solana via Hidden Chrome Extensions

Socket’s Threat Research Team has outlined all the details.
How-To Geek on MSN

NPM packages are infected with malware, again

Shai Hulud v2 infected 500+ npm packages (700+ versions) and spilled into Java/Maven — yikes. Compromised packages run a ...
Crypto News

Warning: New Chrome Extension Drains Solana Traders – 0.05% Stolen Per Swap

A newly discovered malicious Chrome extension is stealing funds from Solana traders by quietly siphoning a fee from every ...
U.Today

'Crypto Copilot' Extension Sends SOL to Hacker: Details

According to a recent report, the “Crypto Copilot” Chrome extension is siphoning SOL from anyone who installs it. The ...
GitHub

A modern, robust, and easy-to-use Java bytecode obfuscator with a graphical user interface.

This project, ByteObf, is an independent fork of the original Bozar obfuscator by vimasig. It has been modernized to run on the latest Java versions (23) and its core engine has been hardened to ...