The Hacker News

npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels

Researchers expose Discord webhook C2 in npm, PyPI, RubyGems; North Korean actors published 338 malicious npm packages with ...
Visual Studio Magazine

Blazor for JavaScript Developers

At the upcoming Lived! 360 Orlando 2025 conference, Tim Purdum, Engineering Manager and Senior Software Engineer at dymaptic, ...
The Hacker News

North Korean Hackers Use EtherHiding to Hide Malware Inside Blockchain Smart Contracts

Google reports North Korean hackers using EtherHiding to embed adaptive malware in blockchain smart contracts.
SecurityWeek

Supply Chain Attack Targets VS Code Extensions With ‘GlassWorm’ Malware

Visual Studio developers are targeted with a self-propagating worm in a sophisticated supply chain attack through the OpenVSX ...
InfoWorld

Self-propagating worm found in marketplaces for Visual Studio Code extensions

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain ...
Decrypt

DPRK Hackers Use 'EtherHiding' to Host Malware on Ethereum, BNB Blockchains: Google

Google’s Threat Intelligence Group has linked North Korean hackers to EtherHiding, blockchain malware previously used by ...

North Korean hackers embedded malware in Ethereum and BNB smart contracts

North Korean hackers are using a new malware that hides inside Ethereum and BNB smart contracts to launch stealthy crypto ...

Self-spreading GlassWorm malware hits OpenVSX, VS Code registries

A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with ...

North Korea Weaponizes Blockchain for Stealth Hacks, Poses as Job Recruiters

North Korean threat group Famous Chollima is using blockchain technology to hide malware payloads in smart contracts, which ...

Web Development: Bun 1.3 Becomes Full-Stack JavaScript Runtime

The new version of Bun includes numerous innovations for full-stack development, as well as a client for Redis and its ...

From Job Offers to Crypto Theft: Latest North Korean Hacker Campaigns Exposed

The North Korean threat actor behind the Contagious Interview campaign has started combining features from two of its malware ...