Microsoft

StealC and Amadey: Breaking down infostealers and the cybercrime services that deliver them

On June 24, 2026, Microsoft’s Digital Crimes Unit (DCU) facilitated the takedown, suspension, and blocking of domains that ...
The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
The Hacker News

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

ThreatsDay Bulletin covers AI abuse, poisoned packages, phishing, macOS attacks, SD-WAN flaws, scams, and supply-chain ...
GitHub

Siedle Home Assistant Integration

A complete Home Assistant integration for Siedle IQ door stations (SUS2) — fully reverse-engineered from the official Siedle app. ⚠️ Important: You will likely need a second device (e.g., a tablet or ...
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The ...
GitHub

wolfTPM (TPM 2.0)

Native C code designed for embedded use. Single IO callback for hardware SPI interface. No external dependencies. Compact code size and minimal memory use. wolfTPM includes a portable firmware TPM 2.0 ...