[HackerNews] Malicious NPM Package Caught Stealing Users’ Saved Passwords From Browsers

A software package available from the official NPM repository has been revealed to be actually a front for a tool that’s designed to steal saved passwords from the Chrome web browser.
The package in question, named “nodejs_net_server” and downloaded over 1,283 times since February 2019, was last updated seven months ago (version 1.1.2), with its corresponding repository leading to non-existent

Source: Read More (The Hacker News)

You might be interested in …

[ZDNet] Logitech Bolt: New wireless protocol provides added security for mice and keyboards

All posts, ZDNet

Logitech’s MX Master and Ergo ranges of keyboards and mice will get a business-focused upgrade with support for the company’s new Bolt wireless technology. Source: Read More (Latest topics for ZDNet in Security)

Read More

[HackerNews] OWASP’s 2021 List Shuffle: A New Battle Plan and Primary Foe

All posts, HackerNews

Code injection attacks, the infamous king of vulnerabilities, have lost the top spot to broken access control as the worst of the worst, and developers need to take notice. In this increasingly chaotic world, there have always been a few constants that people could reliably count on: The sun will rise in the morning and […]

Read More

[BleepingComputer] Google fined €220 million for abusing dominant role in online ads

The French competition authority has fined Google €220 million for abusing its dominant position in online advertising and favoring its services to the disadvantage of its publishers and competitors. […] Source: Read More (BleepingComputer)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.