Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-23 03:00 PDT
- Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT
The Hacker News • 2026-06-23 01:54 • thehackernews.com
Cybersecurity researchers have discovered a set of malicious npm packages that are designed to deliver a Windows-based remote access trojan (RAT).The list of identified packages, is below –
aes-decode-runner-pro (145 downloads)
postcss-minify-selector (256 downloads)
postcss-minify-selector-parser (615 downloads)All the packages were published over the past month by an npm user named
https://thehackernews.com/2026/06/malicious-npm-packages-pose-as-postcss.html - WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool
The Hacker News • 2026-06-22 22:38 • thehackernews.com
Direct messages sent via WhatsApp are being used to distribute malicious Visual Basic Script (VBScript) files that lead to the installation of legitimate Remote Monitoring and Management (RMM) software.Per findings from Kaspersky, the active campaign is targeting users of WhatsApp Desktop and WhatsApp Web across Malaysia, Brazil, India, Mexico, Singapore, the U.K., Spain, Taiwan, Australia,
https://thehackernews.com/2026/06/whatsapp-vbscript-campaign-uses-fake.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
