Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.
WeLiveSecurity

GopherWhisper: A burrow full of malware

ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian ...

ESET Research discovers new China-aligned group, GopherWhisper: It abuses messaging services Discord, Slack, and Outlook to spy

ESET Research has uncovered a new China-aligned APT group, which has been named GopherWhisper, that targets governmental institutions in ...
DataBreachToday

Unwary Chinese Hackers Hardcoded Credentials into Backdoors

Researchers uncovered a Chinese-linked cyberespionage group after attackers left command and control credentials embedded in ...
Tech XploreOpinion

From floppy disks to Claude Mythos, how ransomware grew into a multibillion‑dollar industry

When evolutionary biologist Joseph Popp coded the first documented piece of ransomware in 1989, he had little idea it would ...