malware
(7 articles)
April 10, 2026
GlassWorm Campaign Targets Developer IDEs via Zig Dropper
The GlassWorm campaign uses a Zig-compiled dropper to infect developer IDEs. Learn how it works, what's at risk, and how to protect your dev environment.
April 8, 2026
Chaos Malware Variant Hits Cloud Deployments
A new Chaos variant targets misconfigured cloud deployments and adds SOCKS proxy capability. Here's what developers need to know to stay protected.
April 5, 2026
36 Malicious npm Packages Exploited Redis and PostgreSQL to Deploy Persistent Implants
36 rogue npm packages abused Redis and PostgreSQL connections to plant persistent backdoors. Here is what happened and how to protect your supply chain.
March 31, 2026
Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account
A compromised npm account pushed a cross-platform RAT through the Axios package. Here's what happened and how developers can protect their supply chain.
March 27, 2026
Fake VS Code Alerts on GitHub Spread Malware to Developers
A coordinated campaign is flooding GitHub Discussions with fake VS Code security alerts, tricking developers into downloading malware via Google Drive links.
March 24, 2026
Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials
A stealthy npm supply chain attack uses 7 malicious packages to harvest crypto wallet keys and credentials. Here's what developers need to know.
March 23, 2026
North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware
North Korean threat actors are exploiting VS Code auto-run tasks to silently deploy StoatWaffle malware. Here's what happened and how to protect your dev environment.