crypto

GitHub phishing scam uses OpenClaw branding to lure developers into wallet drain: report

Crypto scammers are using OpenClaw’s popularity to target developers via a new GitHub phishing campaign designed to drain their crypto wallets. A report published by platform OX Security detailed an ...
decrypt

OpenClaw Developers Lured in GitHub Phishing Campaign Targeting Crypto Wallets

Add Decrypt as your preferred source to see more of our stories on Google. Attackers used fake GitHub accounts to tag developers, claiming they had won $5,000 in ...
blockonomi

OpenClaw Developers Hit by GitHub Phishing Campaign Designed to Drain Crypto Wallets

Attackers created fake GitHub accounts to tag OpenClaw developers with fraudulent $5,000 $CLAW token airdrop offers. A cloned openclaw.ai site used obfuscated ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

Microsoft Defender Experts identified a coordinated developer-targeting campaign delivered through malicious repositories disguised as legitimate Next.js projects and technical assessment materials.
Yahoo! Sports

Giannis Antetokounmpo obfuscated direct question about Bucks future

I actually disagree with anyone who says Giannis Antetokounmpo has been confusing in his approach to his long-term future with the Milwaukee Bucks. At every turn, it's abundantly clear that ...
SecurityWeek

North Korean Hackers Target macOS Developers via Malicious VS Code Projects

The hackers trick victims into accessing GitHub or GitLab repositories that are opened using Visual Studio Code. Once the repositories are opened in VS Code, the victim is prompted to trust the ...
CSOonline

Contagious Interview turns VS Code into an attack vector

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist malicious code. Threat actors behind the long-running Contagious Interview ...
The Hacker News

New VVS Stealer Malware Targets Discord Accounts via Obfuscated Python Code

Cybersecurity researchers have disclosed details of a new Python-based information stealer called VVS Stealer (also styled as VVS $tealer) that's capable of ...
IEEE

TransAST: A Machine Translation-Based Approach for Obfuscated Malicious JavaScript Detection

Abstract: As an essential part of the website, JavaScript greatly enriches its functions. At the same time, JavaScript has become the most common attack payload on malicious websites. Although ...
financefeeds

Hackers Exploit JavaScript Library to Deploy Crypto Wallet Drainers

Hackers have exploited a flaw in the React JavaScript library to inject code that drains crypto wallets onto websites, primarily on cryptocurrency platforms. The React team released a patch on ...
financefeeds

Hacker nutzen JavaScript-Bibliothek aus, um Krypto-Wallet-Drainer einzusetzen

Hacker haben Exploited a flaw in the React JavaScript library to inject code that drains crypto wallets onto websites, primarily on kryptowährung platforms. The React team released a patch on December ...
CoinTelegraph

Hackers are exploiting a JavaScript library to plant crypto drainers

The React team published a fix on Dec. 3 and advises anyone using the react-server-dom-webpack, react-server-dom-parcel, and react-server-dom-turbopack, to upgrade immediately. There has been a recent ...