The Hacker News

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...

Web skimming attacks target major payment networks

Web skimming campaigns use obfuscated JavaScript code to steal credit card data from checkout pages without detection by ...

Hackers are using LLMs to build the next generation of phishing attacks

What if a phishing page was generated on the spot?
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

Malicious GhostPoster browser extensions found with 840,000 installs

Another set of 17 malicious extensions linked to the GhostPoster campaign has been discovered in Chrome, Firefox, and Edge ...
CSO Online

Contagious Interview turns VS Code into an attack vector

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

AdGuard VPN's obfuscated TrustTunnel protocol goes open-source – here's what you need to know

AdGuard VPN has made its proprietary TrustedTunnel protocol open-source. Here's what you need to know about the protocol and ...
AOL

This 1 Hack Could Protect Your Information Online, According To Security Experts

Digital privacy is no longer a concern that’s reserved for the tech-savvy. The average internet user (ahem, billions of people globally) is online in some form every single day. Pew Research findings ...
DataBreachToday

Magecart Hits Continue: Stripe Spoofing, Supply Chain Risks

Magecart-style digital skimming attacks targeting payment card data continue, with researchers detailing an active campaign ...