The Hacker News

GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection

GootLoader malware is abusing malformed ZIP archives that bypass common tools like WinRAR & deliver JavaScript payloads via ...

Malicious GhostPoster browser extensions found with 840,000 installs

Another set of 17 malicious extensions linked to the GhostPoster campaign has been discovered in Chrome, Firefox, and Edge ...
InfoWorld

From typos to takeovers: Inside the industrialization of npm supply chain attacks

A dramatic spike in npm-focused intrusions shows how attackers have shifted from opportunistic typosquatting to systematic, credential-driven supply chain compromises — exploiting CI systems, ...
The Hacker News

Long-Running Web Skimming Campaign Steals Credit Cards From Online Checkout Pages

Magecart web skimming campaign active since 2022 stealing credit card and personal data from compromised e-commerce checkout ...
Security Boulevard

Silent Push Exposes Magecart Network Operating Since Early 2022

Silent Push reveals a sophisticated Magecart network using web skimmers to steal credit card data from online shoppers, highlighting the need for enhanced cybersecurity measures.
DataBreachToday

Magecart Hits Continue: Stripe Spoofing, Supply Chain Risks

Magecart-style digital skimming attacks targeting payment card data continue, with researchers detailing an active campaign ...

West Midlands police chief retires after Maccabi fan ban row, blaming 'political and media ...

Downing Street said yesterday it "no longer had confidence" in Craig Guildford, after a report into the banning of Maccabi ...
Cyber Daily

New investigation reveals top phishing trends in 2025

The top phishing tactics, themes, and techniques used by cyber criminals in 2025 have been revealed in a new investigation by ...