Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
The Hacker News

ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures

ClickFix attacks are delivering BabaDeda, Lorem Ipsum, and Potemkin loaders to deploy stealers, RATs, and ransomware-linked ...
GitHub

seanippolito/self-hosting-guide

AmIUnique - Learn how identifiable you are on the Internet (browser fingerprinting tool). Automatisch - Business automation tool that lets you connect different services like Twitter, Slack, and more ...