Hackers Deploy Malicious npm Packages to Steal Solana Wallet Keys via Gmail SMTP

TikTok Goes Dark in the U.S. as Federal Ban Takes Effect January 19, 2025

U.S. Sanctions Chinese Cybersecurity Firm Over Treasury Hack Tied to Silk Typhoon

Critical Flaws in WGS-804HPT Switches Enable RCE and Network Exploitation

Python-Based Bots Exploiting PHP Servers Fuel Gambling Platform Proliferation

Cybersecurity researchers have identified three sets of malicious packages across the npm and Python Package Index (PyPI) repository that come with capabilities to steal data and even delete sensitive data from infected systems.
The list of identified packages is below -

@async-mutex/mutex, a typosquat of async-mute (npm)
dexscreener, which masquerades as a library for accessing liquidity pool

Headline

Hackers Deploy Malicious npm Packages to Steal Solana Wallet Keys via Gmail SMTP

The Hacker News: Latest News