News

New QR code threat can infect your phone as soon as you scan
As reported by Silicon Angle, threat actors are now embedding malicious JavaScript payloads in QR codes which causes them to ...
INKY warns of new QR code phishing tactic using embedded JavaScript
QR code-based phishing, or “quishing,” is not new. INKY itself warned about its growing prominence back in 2023, but forward two years and INKY says that attackers are now going a step further by ...
Infosecurity Magazine2d
ClickFix Helps Infostealers Use MHSTA for Defense Evasion
ClickFix techniques are enabling infostealer groups to bypass defenses using tools like MSHTA, says ReliaQuest ...
GitHub3d
An embeddable script that makes source-code snippets in HTML prettier.
For which languages does it work? The comments in prettify.js are authoritative but the lexer should work on a number of languages including C and friends, Java, Python, Bash, SQL, HTML, XML, CSS, ...
The Hacker News3d
PyPI, npm, and AI Tools Exploited in Malware Surge Targeting DevOps and Cloud Environments
Malware-laced PyPI and npm packages steal developer credentials, CI/CD data, and crypto wallets. Attacks target macOS, AI ...
The Hacker News4d
Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month
Unit 42 said its telemetry uncovered 269,552 web pages that have been infected with JavaScript code using the JSFireTruck ...