GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...

How to Spot 'Living Off the Land' Computer Attacks

"Living Off the Land" attacks use built-in tools and processes instead of traditional malware.

FBI seeks victims of Steam games used to spread malware

The FBI is asking gamers who installed Steam titles containing malware to provide information as part of an ongoing investigation into eight malicious games uploaded to the gaming platform.
PCMag on MSN

Did a Steam Game Give Your PC Malware? The FBI Wants to Know

In a rare move, the FBI has published an alert 'seeking victim information' related to a hacker exploiting Valve's Steam ...