Cyfirma researchers have found a trojan called FireScam masked as a fake Telegram Premium app, distributed via a deceptive Github.io site impersonating the RuStore, a popular Russian app store. This Android infostealer malware seeks out sensitive Android data such as notifications, messages, and app data, which is funneled to a Firebase Realtime Database endpoint. Additionally, FireScam monitors Android device activities on a wide scale and can maintain control over affected devices.
Hackers Launch Social Engineering Offensive Against Key Node.js Maintainers
Following the high-profile supply chain compromise of the widely used Axios package, a highly coordinated social engineering campaign has been uncovered targeting top-tier Node.js and
.webp?w=0&resize=0,0&ssl=1 "Top 10 Best User Access Management Tools in 2026")