malware campaign
Coverage of malware campaign in the Nexus archive.
- WhatsApp phishing attack uses fake business docs to hack PCs
A malware campaign is targeting WhatsApp users globally through deceptive messages containing VBScript files, which grant attackers remote access to victims' systems. The attack uses fake business documents to lure users into executing the malicious scripts.
- Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
Cybersecurity researchers identified a coordinated malware campaign on the JetBrains Marketplace involving 15 malicious plugins that steal AI provider API keys. These plugins masquerade as AI coding assistants using models like DeepSeek, offering features such as code reviews and chat while exfiltrating sensitive data.
- GlassWorm malware attacks return via 73 OpenVSX "sleeper" extensions
A new wave of the GlassWorm malware campaign is exploiting the OpenVSX ecosystem by distributing 73 malicious 'sleeper' extensions that become active after an update. These extensions pose a cybersecurity threat by leveraging a delayed activation strategy to evade detection.