网络安全研究人员发现，网络犯罪分子正在利用Discord webhook作为替代性命令与控制（C2）通道，渗透主流编程语言生态系统。与传统C2服务器不同，webhook提供免费且隐蔽的数据外传渠道，能够完美隐藏在合法的HTTPS流量中。 过去一个月内，npm、PyPI和RubyGems平台上 ...

A new cyber threat is sweeping through the gaming community — hackers have turned a legitimate cybersecurity testing tool ...

Hackers have turned the RedTiger toolkit into a data-stealing weapon. This post breaks down the threat and the steps to keep your PC safe.

Attackers are using the open-source red-team tool RedTiger to build an infostealer that collects Discord account data and ...

A new type of malware called RedTiger has been popping up more and more in recent months. While the tool was originally ...

The lurking code-bombs lift Discord tokens from users of any applications that pulled the packages into their code bases. A series of malicious packages in the Node.js package manager (npm) code ...

The malware seems like a silly coding lark at first, but further exploration shows it can wreak serious damage in follow-on attacks. The NitroRansomware malware strain is shaking up the ransomware ...

Discord has patched a critical issue in the desktop version of the messaging app which left users vulnerable to remote code execution (RCE) attacks. Bug bounty hunter Masato Kinugawa developed an ...