Credential – NuclearCoffee

Hacker news

175 Malicious npm Packages with 26,000 Downloads Used in Credential Phishing Campaign

On Oct 10, 2025 8:25 pm, by NuclearCoffee

Oct 10, 2025Ravie LakshmananCybercrime / Malware Cybersecurity researchers have flagged a new set of 175 malicious packages on the npm registry that have been used to facilitate credential… Continue reading

Hacker news

DOM-Based Extension Clickjacking Exposes Popular Password Managers to Credential and Data Theft

On Aug 20, 2025 6:19 pm, by NuclearCoffee

Popular password manager plugins for web browsers have been found susceptible to clickjacking security vulnerabilities that could be exploited to steal account credentials, two-factor authentication (2FA) codes, and… Continue reading

Hacker news

Researchers Uncover ECScape Flaw in Amazon ECS Enabling Cross-Task Credential Theft

On Aug 06, 2025 10:38 pm, by NuclearCoffee

Cybersecurity researchers have demonstrated an “end-to-end privilege escalation chain” in Amazon Elastic Container Service (ECS) that could be exploited by an attacker to conduct lateral movement, access sensitive… Continue reading

Hacker news

New ‘Plague’ PAM Backdoor Exposes Critical Linux Systems to Silent Credential Theft

On Aug 02, 2025 4:46 pm, by NuclearCoffee

Cybersecurity researchers have flagged a previously undocumented Linux backdoor dubbed Plague that has managed to evade detection for a year. “The implant is built as a malicious PAM… Continue reading

Tag: Credential

175 Malicious npm Packages with 26,000 Downloads Used in Credential Phishing Campaign

DOM-Based Extension Clickjacking Exposes Popular Password Managers to Credential and Data Theft

Researchers Uncover ECScape Flaw in Amazon ECS Enabling Cross-Task Credential Theft

New ‘Plague’ PAM Backdoor Exposes Critical Linux Systems to Silent Credential Theft

Stay Connected