A Rust infostealer called IronWorm hid in 36 npm packages from the Arweave ecosystem. The malware self-replicated and then pushed backdated malicious commits across nine organizations. Developers who ...

Fake Claude Code installer malware used Google Ads to place spoofed AI tool pages above real documentation since March 2026.

The malware employs ecosystem-specific techniques for execution. On npm, many packages use post-install hooks to deploy a comprehensive JavaScript payload ...

Developer platform Socket says a malware called TrapDoor is targeting crypto and AI developers across npm, PyPI and Crates, aiming to steal crypto wallet info and browser data.

MEXC Futures M-Day is a promotional futures event in which customers trade USDT-M or Coin-M futures for a chance to win ...

The company clarified that only 1% of users were affected and pledged full reimbursement. Meanwhile, a massive supply chain hack targeting JavaScript libraries downloaded over a billion times, but ...

A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was compromised to push malware and attempt to steal crypto from thousands of ...

Infostealer threats are rapidly expanding beyond traditional Windows-focused campaigns, increasingly targeting macOS environments, leveraging cross-platform languages such as Python, and abusing ...

Trust Wallet says attackers who compromised its browser extension right before Christmas have drained approximately $7 million from nearly 3,000 cryptocurrency wallet addresses. The cryptocurrency ...

Trust Wallet CEO Eowyn Chen has announced a manual on how to claim compensation post-hack. Eowyn Chen, the CEO of Trust Wallet, a Binance ecosystem self-custody crypto wallet that had its Google ...