New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.

I found the easiest way to encrypt files on an Android phone - and it's free to do

If you need to encrypt a file on your Android device so it can be safely shared with other users, this handy app gets the job ...

Over 800 Android Apps Targeted in PIN-Stealing Trojan Campaign

Four Android banking malware campaigns are targeting more than 800 apps by abusing overlays, Accessibility permissions, and ...

The Gentlemen ransomware now uses SystemBC for bot-powered attacks

A SystemBC proxy malware botnet of more than 1,570 hosts, believed to be corporate victims, has been discovered following an ...
CoinDesk

Hack at Vercel sends crypto developers scrambling to lock down API keys

Breach tied to compromised AI tool may have exposed credentials used by app frontends, the user-facing layer that connects ...