SecurityWeek

Over 100 GitHub Repositories Distributing BoryptGrab Stealer

Distributed through over 100 GitHub repositories, the BoryptGrab stealer targets browser, wallet, system, and other user data ...
XDA Developers on MSN

I tore apart the most common Linux malware in a sandbox, and it uses layer after layer of tricks to survive

It uses some of the oldest tricks in the book.
The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT via 31 Vercel deployments.
GameSpot

Data Reconstruction Quest Guide In Marathon

Data Reconstruction can be a confusing contract to take on at first in Marathon, but it can be completed fairly easily once you know what to do.
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...