The Hacker News

10 npm Packages Caught Stealing Developer Credentials on Windows, macOS, and Linux

Ten typosquatted npm packages (Jul 4, 2025) delivered a 24MB PyInstaller info stealer using 4 obfuscation layers; ~9,900 ...
Arabian Post on MSN

Stealth Malware Surge With FileFix Cache-Smuggling

A wave of advanced phishing campaigns is exploiting a novel combination of social engineering and browser-cache manipulation ...