North Korea-linked Contagious Interview campaign is now luring developers with trojanized coding tasks and pulling obfuscated payloads from public JSON-storage services like JSON Keeper, JSONSilo, and ...
China-linked APT24 hackers have been using a previously undocumented malware called BadAudio in a three-year espionage ...
A threat group dubbed ShadyPanda exploited traditional extension processes in browser marketplaces by uploading legitimate extensions and then quietly weaponization them with malicious updates, ...
ClickFix has become hugely successful as it relies on a simple yet effective method, which is to entice a user into infecting ...
Some 2FA-phishing attacks are becoming significantly harder to spot as threat actors blend two previously distinct ...
This blog is intended to share an in-depth analysis of a recent multi-stage attack attributed to the Water Gamayun advanced persistent threat group (APT). Drawing on telemetry, forensic reconstruction ...
ShadyPanda abused browser extensions for seven years, turning 4.3M installs into a multi-phase surveillance and hijacking ...
A threat actor has published over a hundred malicious extensions that can track and profile Chrome and Microsoft Edge users ...
North Korean attackers have delivered more than 197 malicious packages as part of ongoing state-sponsored activity to ...
Sneaky2FA, a popular among cybercriminals phishing-as-a-service (PhaaS) kit, has added Browser-in-the-Browser (BitB) ...
Socket’s Threat Research Team has outlined all the details.
A new ClickFix variant ratchets up the psychological pressure to 100 and addresses some technical mitigations to classic ClickFix attacks.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback