Threat Post

NPM Package Steals Passwords via Chrome’s Account-Recovery Tool

In another vast software supply-chain attack, the password-stealer is filching credentials from Chrome on Windows systems via ChromePass. A credentials-stealing code bomb that uses legitimate password ...
Forbes

MacOS Passwords Alert—New Malware Targets Keychain, Chrome, Brave, Opera

Update, Dec. 10, 2024: This story, originally published Dec. 09, has been updated with a statement from Brave. Threat researchers have confirmed that a nasty new scam that targets macOS users is being ...