Cybersecurity researchers have flagged a fresh set of packages that have been compromised by bad actors to deliver a self-propagating worm that spreads through stolen developer npm tokens. The supply …
Tag:
Steal
Safety & Security
Russia Hacked Routers to Steal Microsoft Office Tokens – Krebs on Security
by David Walker
Hackers linked to Russia’s military intelligence units are using known flaws in older Internet routers to mass harvest authentication tokens from Microsoft Office users, security experts warned today. The spying …
Safety & Security
Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials
by David Walker
Ravie LakshmananApr 02, 2026Vulnerability / Threat Intelligence A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal database credentials, SSH private keys, Amazon Web …
Safety & Security
Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials
by David Walker
Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency wallets and sensitive data. The activity is being tracked by ReversingLabs as the …
Safety & Security
Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers
by David Walker
Ravie LakshmananMar 19, 2026Cyber Espionage / Threat Intelligence Cybersecurity researchers have flagged a new malware dubbed Speagle that hijacks the functionality and infrastructure of a legitimate program called Cobra DocGuard. …
Safety & Security
18 Popular Code Packages Hacked, Rigged to Steal Crypto – Krebs on Security
by David Walker
At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved in …