Bleeping Computer

Devs targeted by W4SP Stealer malware in malicious PyPi packages

Five malicious packages were found on the Python Package Index (PyPI), stealing passwords, Discord authentication cookies, and cryptocurrency wallets from unsuspecting developers. PyPI is a software ...
Dark Reading

W4SP Stealer Stings Python Developers in Supply Chain Attack

Attackers continue to create fake Python packages and use rudimentary obfuscation techniques in an attempt to infect developers' systems with the W4SP Stealer, a Trojan designed to steal ...
Threat Post

NPM Package Steals Passwords via Chrome’s Account-Recovery Tool

In another vast software supply-chain attack, the password-stealer is filching credentials from Chrome on Windows systems via ChromePass. A credentials-stealing code bomb that uses legitimate password ...
TechRepublic

New Malware Targets 97 Browser Variants, 76 Crypto Wallets & 19 Password Managers

New Malware Targets 97 Browser Variants, 76 Crypto Wallets & 19 Password Managers Your email has been sent Learn how the Meduza Stealer malware works, what it targets and how to protect your company ...