Infostealer
Curated coverage and analysis in this editorial area.
Fake Data Breach Alerts: When the Warning Becomes the Trap
Cybercriminals are weaponizing 'breach fatigue' and generative AI to craft hyper-realistic phishing alerts that mimic official inciden…
18 Malicious AI Extensions Exposed: Unit 42 Details Email Spying and RAT Risks
Palo Alto Networks Unit 42 has uncovered 18 AI browser extensions that masquerade as productivity tools while deploying RATs and spyin…
GitHub: 3,800 Internal Repos Exfiltrated via Trojanized VS Code Extension
GitHub has confirmed the theft of approximately 3,800 internal repositories after an employee installed a trojanized version of the Nx…
Grafana Labs Breach: Forgotten Workflow Token Exposes Internal Repositories
Grafana Labs has disclosed a security breach involving its GitHub repositories after an overlooked CI/CD token—missed during an emerge…
AI Productivity Facade: 18 Malicious Extensions Discovered with RAT and MitM Capabilities
Palo Alto Networks’ Unit 42 has identified 18 high-risk AI browser extensions that surveil emails, steal prompts, and compromise user…
Yarix Y-Report 2026: Critical Security Events Surge 62% as Italy Falls to 6th in Global Ransomware Rankings
The Yarix Y-Report 2026 documents 522,486 security events and a 62% spike in critical threats, highlighting an increasingly aggressive…
Mini Shai-Hulud: 84 Malicious TanStack Packages Signed with Valid SLSA Level 3 Attestations
On May 11, 2026, the TeamPCP threat group compromised TanStack's CI/CD pipeline to inject 84 malicious npm versions. Despite carrying…
Ukrainian Roblox Hackers Arrested: 610,000 Accounts Stolen
Ukrainian police arrest a hacker group that stole over 610,000 Roblox accounts and resold them for cryptocurrency. Learn how they oper…
PyPI: Package with 1.1 Million Downloads Hacked to Distribute Infostealer
A PyPI package with 1.1 million monthly downloads was compromised to distribute an infostealer. Analysis of the software supply chain…