A malicious npm package, postcss-minify-selector-parser, has been discovered masquerading as a benign PostCSS utility and delivering a multi-stage Windows remote access trojan (RAT). The imposter deliberately mimics the widely used postcss-selector-parser a legitimate library with more than 150 million weekly downloads by reusing the same keyword space (postcss, selector, parser, css) and depending on the […]
The post Malicious npm Package Masquerades as PostCSS Utility to Deliver PowerShell Downloader appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
8-Year-Old Samsung KNOX Vulnerability Exposes Galaxy Devices to Kernel Attacks
A critical use-after-free (UAF) vulnerability in Samsung’s proprietary KNOX security subsystem, which has been hidden for over eight years, has been discovered by security research
.jpg?w=0&resize=0,0&ssl=1 "Aikido Partners with Drydock to Bring Pre-Publish Malware Review to npm and PyPI – Aikido Security")
