From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet
A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
A single pipeline replaced fourteen lines and I never looked back.
Microsoft reports a Windows clipper malware campaign using USB-delivered LNK files and Tor-based C2 since Feb 2026, stealing ...
Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...
In addition to executing entirely in memory, the malware's infection chain incorporates other anti-analysis techniques ...
CI/CD pipelines are optimized for code deployments. Long-running operational processes and self-service workflows can be ...
Have you ever heard of FINDSTR and Select-String? Select-String is a cmdlet that is used to search text & the patterns in input strings & files. It is similar to grep on Linux & FINDSTR on Windows. In ...
IntroductionIn March 2026, Zscaler ThreatLabz observed multiple instances of typosquatting domains hosting malicious content generated with AI-powered website creation tools. Threat actors are ...
Every now and then, most especially, a system administrator will need to restart a server or system. Usually, you can Remote Shut down or Restart Windows through the graphical user interface – ...
IntroductionOn May 14, 2026, the Zscaler ThreatLabz team identified unusually high activity associated with the threat actor SmartApeSG to deploy malware. During our examination, we discovered ...
It takes longer to explain the tool than to appreciate it.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results