malware
(15 articles)May 27, 2026
GlassWorm Malware Takedown Hits Supply Chain
GlassWorm malware infrastructure has been dismantled, exposing how developer supply chain attacks operated. Here's what you need to know to stay protected.
May 25, 2026
TrapDoor Supply Chain Attack Hits npm, PyPI, CratesIO
TrapDoor malware spreads credential-stealing payloads across npm, PyPI, and CratesIO. Learn how the supply chain attack works and how to protect your projects.
May 23, 2026
Laravel Lang Packages Hijacked: Credential Malware
Attackers hijacked Laravel Lang Composer packages via tag rewrites to deploy a cross-platform credential stealer. Here's what happened and how to respond.
May 23, 2026
Laravel-Lang PHP Packages Hit by Credential Stealer
Laravel-Lang PHP packages were compromised to deliver a cross-platform credential stealer. Here's what developers need to know and how to protect your apps.
May 15, 2026
node-ipc npm Package Compromised to Steal Credentials
Three malicious node-ipc versions exfiltrate cloud keys, SSH tokens, and CI/CD secrets via DNS TXT queries. Check your lockfiles now.
May 4, 2026
PyTorch Lightning PyPI Package Drops Credential Stealer
PyTorch Lightning v2.6.3 on PyPI contained a hidden credential stealer targeting browsers, .env files, and cloud APIs. Here's what developers need to know.
April 22, 2026
npm Supply Chain Worm Steals Developer Tokens
A self-propagating worm is hijacking npm packages to steal developer tokens. Learn how it spreads and what you can do to protect your projects now.
April 15, 2026
WordPress EssentialPlugin Suite Hacked to Push Malware
30+ WordPress plugins in the EssentialPlugin package were backdoored to push malware via updates. Here's what happened and how to protect your site.
April 10, 2026
GlassWorm Campaign Targets Developer IDEs via Zig Dropper
The GlassWorm campaign uses a Zig-compiled dropper to infect developer IDEs. Learn how it works, what's at risk, and how to protect your dev environment.
April 8, 2026
Chaos Malware Variant Hits Cloud Deployments
A new Chaos variant targets misconfigured cloud deployments and adds SOCKS proxy capability. Here's what developers need to know to stay protected.
April 5, 2026
36 Malicious npm Packages Exploited Redis and PostgreSQL to Deploy Persistent Implants
36 rogue npm packages abused Redis and PostgreSQL connections to plant persistent backdoors. Here is what happened and how to protect your supply chain.
March 31, 2026
Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account
A compromised npm account pushed a cross-platform RAT through the Axios package. Here's what happened and how developers can protect their supply chain.
March 27, 2026
Fake VS Code Alerts on GitHub Spread Malware to Developers
A coordinated campaign is flooding GitHub Discussions with fake VS Code security alerts, tricking developers into downloading malware via Google Drive links.
March 24, 2026
Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials
A stealthy npm supply chain attack uses 7 malicious packages to harvest crypto wallet keys and credentials. Here's what developers need to know.
March 23, 2026
North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware
North Korean threat actors are exploiting VS Code auto-run tasks to silently deploy StoatWaffle malware. Here's what happened and how to protect your dev environment.