ZDNet

Hacker backdoors popular JavaScript library to steal Bitcoin funds

A hacker has gained (legitimate) access to a popular JavaScript library and has injected malicious code that steals Bitcoin and Bitcoin Cash funds stored inside BitPay's Copay wallet apps. The ...
The Hacker News

Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads

PyStoreRAT spreads via fake GitHub tools using small Python or JavaScript loaders to fetch HTA files and install a modular ...
ZDNet

An insecure mess: How flawed JavaScript is turning web into a hacker's playground

An analysis of over 133,000 websites has found that 37 percent of them have at least one JavaScript library with a known vulnerability. Researchers from Northeastern University have followed up on ...