The Hacker News

Researchers Expose TA585's MonsterV2 Malware Capabilities and Attack Chain

Researchers link TA585 to MonsterV2 RAT stealer delivered via IRS-themed phishing, JavaScript injects, and GitHub lures.
InfoWorld

Anthropic extends Claude Code to browsers

Preview service allows developers to delegate coding tasks to Claude from their web browsers. The tasks run on ...

Self-spreading GlassWorm malware hits OpenVSX, VS Code registries

A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with ...

Moderne Expands Modernization Platform With First Type-Attributed JavaScript & TypeScript Refactoring

Moderne, the enterprise code modernization platform from the team behind OpenRewrite, today announced full JavaScript and ...
InfoWorld

Visual Studio Code taps AI for merge conflict resolution

VS Code 1.105 also introduces a built-in MCP server marketplace and allows users to resume recent Copilot Chat sessions.
CSO Online

Threat actors are spreading malicious extensions via VS marketplaces

There isn’t a consistent threat model for extension marketplaces yet, McCarthy said, making it difficult for any platform to ...
The Hacker News

Hackers Abuse Blockchain Smart Contracts to Spread Malware via Infected WordPress Sites

"UNC5142 is characterized by its use of compromised WordPress websites and 'EtherHiding,' a technique used to obscure ...

What is EtherHiding? Google flags malware with crypto-stealing code in smart contracts

Researchers at tech giant Google's Threat Intelligence team highlight a years-old exploit that is now being used by North ...
CSO Online

TigerJack’s malicious VSCode extensions mine, steal, and stay hidden

The coordinated campaign abuses Visual Studio Code and OpenVSX extensions to steal code, mine cryptocurrency, and maintain ...
Infosecurity Magazine

Hacker Group TA585 Emerges With Advanced Attack Infrastructure

A newly identified cybercrime group TA585 is running an advanced cyber operation distributing MonsterV2 malware ...

North Korea Weaponizes Blockchain for Stealth Hacks, Poses as Job Recruiters

North Korean threat group Famous Chollima is using blockchain technology to hide malware payloads in smart contracts, which ...

Moderne adds support for JavaScript and TypeScript to its code refactoring tool

Moderne, a company that provides solutions to help modernize code, announced that its Lossless Semantic Tree (LST) code model ...