The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...

AMOS infostealer targets macOS through a popular AI app

AMOS infostealer is targeting macOS users by abusing popular AI apps and extension marketplaces to harvest credentials. Flare examines how AMOS operates, spreads through AI-driven lures, and feeds the ...

Microsoft warns infostealer malware is 'rapidly expanding beyond traditional Windows-focused campaigns' and targeting Mac devices

Hackers are increasingly targeting macOS users with social engineering and infostealers, Microsoft warns.
Microsoft

Infostealers without borders: macOS, Python stealers, and platform abuse

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...
AppleInsider

Infostealer malware database exposes millions of iCloud and email passwords

A publicly accessible database containing more than 149 million usernames and passwords was discovered, and before it was taken offline, it included logins from 900,000 iCloud users. The database ...
TechRepublic

Data Leak Exposes 149M Logins, Including Gmail, Facebook

Jeremiah Fowler, a veteran security researcher, recently stumbled upon 149,404,754 unique logins and passwords, totaling about 96GB of raw data. There was no encryption… and it didn’t even have a ...
The Verge

1Password is introducing a new phishing prevention feature

1Password will warn users when it detects an unrecognized website that could be part of a phishing attack. 1Password will warn users when it detects an unrecognized website that could be part of a ...
PC Magazine

1Password Adds a Second Line of Phishing Defense to Its Browser Extension

Password-manager service 1Password won’t let you get past the paste command if it spots a phishing-scam site in your browser. This addition to the firm’s browser extension provides a software fix for ...
Infosecurity-magazine.com

Phishing Scams Exploit Browser-in-the-Browser Attacks to Steal Facebook Passwords

Cybercriminals are using are increasingly using a sneaky browser-in-the-browser (BitB) attack technique in efforts to steal login credentials of Facebook users. According to analysis by cybersecurity ...
Fox News

Malicious Chrome extensions caught stealing sensitive data

Chrome extensions are supposed to make your browser more useful, but they've quietly become one of the easiest ways for attackers to spy on what you do online. Security researchers recently uncovered ...
The Hacker News

Search results for Google Chrome password stealer | Breaking Cybersecurity News | The Hacker News

A financially-motivated malware campaign has compromised over 800 WordPress websites to deliver a banking trojan dubbed Chaes targeting Brazilian customers of Banco do Brasil, Loja Integrada, Mercado ...
Bleeping Computer

Zoom Stealer browser extensions harvest corporate meeting intelligence

A newly discovered campaign, which researchers call Zoom Stealer, is affecting 2.2 million Chrome, Firefox, and Microsoft Edge users through 18 extensions that collect online meeting-related data like ...