InfoWorld

From typos to takeovers: Inside the industrialization of npm supply chain attacks

A dramatic spike in npm-focused intrusions shows how attackers have shifted from opportunistic typosquatting to systematic, credential-driven supply chain compromises — exploiting CI systems, ...
hodlfm

DeadLock Ransomware Hides Servers using Polygon Smart Contracts

Group-IB researchers said the most unusual aspect of DeadLock lies in its use of Polygon smart contracts to manage ...