The post Attackers replaced JDownloader installer downloads with malware appeared first on . If you downloaded the JDownloader installer during the compromise window ( ...

In early May, the JDownloader website delivered malware. This is reminiscent of Daemon Tools, which have since reacted.

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...

Between May 6 and 7, it was dangerous to install JDownloader from alternative links on the site.

What happened?: Attackers exploited a CMS flaw to replace JDownloader’s Windows and Linux installers with malware between May 6–7, 2026. What was affected?: Only Windows and Linux shell installers ...

KongTuke has been regarded as the original access broker and has switched to Microsoft Teams for social engineering attacks, ...

Microsoft Threat Intelligence said attackers placed malicious code inside a Mistral AI download distributed through a Python ...

IT GOES INTO EFFECT THURSDAY. TONIGHT WE’RE LEARNING MORE ABOUT A GLADSTONE COMPANY THAT OWES MILLIONS. INVESTIGATIVE REPORTER MATT FLEENER IS GETTING ANSWERS ABOUT THE COMPANY THAT MADE POPULAR TACO ...

Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and ...

Japan's Inpex to buy stake in Australian Browse gas field from PetroChina Japan's Inpex said on Friday it would buy PetroChina's 10% stake in the Browse gas fields offshore from Western Australia, the ...