The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT via 31 Vercel deployments.
TechRaptor

.hack//Z.E.R.O. Announced as CyberConnect2 Celebrates 30th Anniversary

It's developer CyberConnect2's 30th birthday, and to celebrate this milestone, the studio has announced .hack//Z.E.R.O., a brand new installment in the long-running .hack series over which the company ...
Bleeping Computer

Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into executing malicious JavaScript in their browser, allowing attackers to ...
IEEE

JasFree: Grammar-free Program Analysis for JavaScript Bytecode

Abstract: JavaScript is rapidly being deployed as binaries in security-critical embedded domains, including IoT devices, edge computing, and smart automotive applications. Ensuring the security of ...