Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution

PLAYFULGHOST Delivered via Phishing and SEO Poisoning in Trojanized VPN Apps

U.S. Sanctions Chinese Cybersecurity Firm for State-Backed Hacking Campaigns

New AI Jailbreak Method 'Bad Likert Judge' Boosts Attack Success Rates by Over 60%

LDAPNightmare PoC Exploit Crashes LSASS and Reboots Windows Domain Controllers

Cybersecurity researchers have discovered a malicious package on the npm package registry that masquerades as a library for detecting vulnerabilities in Ethereum smart contracts but, in reality, drops an open-source remote access trojan called Quasar RAT onto developer systems.
The heavily obfuscated package, named ethereumvulncontracthandler, was published to npm on December 18, 2024, by a user

Headline

Malicious Obfuscated NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT

The Hacker News: Latest News