The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...

Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT via 31 Vercel deployments.
Communications of the ACM

Safe Coding

Safe coding is a collection of software design practices and patterns that allow for cost-effectively achieving a high degree ...
GitHub

This Repository contains some useful PowerShell scripts related to Active Directory and DNS.

These scripts were originally published on Microsoft TechNet Gallery, and now I have copied these scripts to Github. Use Powershell 4.0 or higer version. Test before you execute these scripts in a ...
GitHub

Automated Image Processing Pipeline

This project is a Python-based image processing automation tool designed to streamline the application of various computer vision techniques. The system monitors an input/ directory, detects valid ...