New Malware “ClickFix” Targets macOS Users to Steal Login Credentials
In recent months, security researchers have identified a new phishing campaign aimed at macOS users, disguised as a CAPTCHA verification process. Known as "ClickFix," this attack combines social engineering with [...]
Malicious Packages Target RubyGems and PyPI: Stealing Credentials and Crypto, Leading to Security Overhaul
A new set of 60 malicious packages targeting the RubyGems ecosystem has been discovered. These packages masquerade as harmless automation tools for social media, blogging, and messaging platforms, but their [...]
Malicious Go and npm Packages Spread Cross-Platform Malware, Enable Remote Data Wipes
Cybersecurity researchers have identified 11 malicious Go packages engineered to download and execute additional payloads from remote servers on both Windows and Linux platforms. The list of identified packages is [...]
Mozilla Issues Warning About Phishing Attacks Targeting Add-on Developer Accounts
Mozilla has issued an urgent security alert to its developer community after identifying a sophisticated phishing campaign aimed at compromising AMO (addons.mozilla.org) accounts. On August 1, 2025, Scott DeVaney from [...]
Cybercriminals Are Using Free EDR Trials to Disable Your Current EDR
A sophisticated attack technique has emerged in which cybercriminals exploit free trials of Endpoint Detection and Response (EDR) software to disable existing security protections on compromised systems. Known as BYOEDR [...]
Get Social