A new stealthy JavaScript loader named RATDispenser is being used to infect devices with a variety of remote access trojans (RATs) in phishing attacks. The novel loader was quick to establish ...

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...

Security firm Trend Micro has discovered an attack on home routers that involves malicious JavaScript, a mobile website, and a mobile device such as a smartphone. This attack has been taking place ...

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

Researchers are warning of a new JavaScript loader being used to distribute eight Remote Access Trojans (RATs) in information-stealing campaigns. A team at HP Wolf named the tool “RATDispenser,” and ...

2:00 PM -- In the beginning, there was application security. All ports were open to the world and practically every application had holes in it. It was like the Wild West. Eventually application ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

Threat protection startup Deep Instinct Ltd.’s Threat Research Lab today provided details of a new strain of JavaScript-based dropper that delivers two forms of malware onto victims’ computers. Dubbed ...

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be ...

Axios functions as pre-built software that a developer can easily incorporate into a JavaScript project. However, a hacker ...

A hacker has manipulated a widely-used JavaScript library, Axios, to distribute malware, potentially compromising millions of ...

Understanding how malware attacks work is vital to defend against them. To ease this process, threat analysts have developed models that map the stages of cybersecurity attacks, allowing defenders to ...