Cybersecurity Help is a global vulnerability intelligence provider. We monitor vulnerabilities in software from 60,000+ vendors and help customers prevent potential data breaches by addressing them proactively.
Request DemoAttackers hijacked a legitimate npm account belonging to a former Mastra contributor and published 144 malicious package versions within 88 minutes.
2 min readThe plugins, published under seven different vendor accounts, were masked as AI coding assistants, code-review tools, and Git utilities.
2 min readBackdoor.Turn is believed to be the first known malware observed in real-world attacks abusing Microsoft Teams TURN relay servers for stealthy communications.
3 min readLytvynenko also admitted to helping develop a loader used to deploy malware.
3 min readESET confirmed real-world activity between 2023 and 2024, targeting government organizations in Honduras, Taiwan, Thailand, and Pakistan.
3 min read