The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
Infosecurity Magazine

Lookalike npm Package Hides a Multi-Stage Windows RAT

A malicious npm package has been caught impersonating one of the JavaScript ecosystem's most widely used build tools. The ...
The Next Web

Cloudflare teams up with Chrome, Firefox, and Edge on a privacy-first anti-bot protocol

Cloudflare, Mozilla, Google, and Microsoft are developing PACT, a privacy-preserving protocol to verify legitimate web traffic without tracking users.