CSO Online

FlowerStorm phishing gang adopts virtual-machine obfuscation to evade email defenses

Researchers say the campaign uses a browser-based JavaScript VM to hide credential theft and intercept MFA at scale.
SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...
The Hacker News

Search results for javascript obfuscate npm | Breaking Cybersecurity News | The Hacker News

SANS LDR514 in NYC, Aug 10–15: policy, risk frameworks, board communication, and strategic leadership. Your VPN is Helping Attackers Move as Fast as AI AI collapsed human response window and turned ...
adtmag.com

Mojang Studios to Remove Code Obfuscation from Minecraft Java Edition

Mojang Studios announced Tuesday it will eliminate code obfuscation in Minecraft: Java Edition, marking a significant shift in how the company distributes the game to its modding community. The change ...
Yahoo

What does the word ‘obfuscate’ mean? If you’re feeling puzzled, here’s what to know

Add Yahoo as a preferred source to see more of our stories on Google. If clarity shines a light on something, obfuscating it is casting a shadow over it. The word “obfuscate” is cloaked in darkness, ...
NJ.com

What does the word ‘obfuscate’ mean? If you’re feeling puzzled, here’s what to know

If clarity shines a light on something, obfuscating it is casting a shadow over it. The word “obfuscate” is cloaked in darkness, and often describes things that are shrouded in mystery, are ...
Dark Reading

Npm Package Hides Malware in Steganographic QR Codes

Attackers have poisoned a code package on the npm registry in a novel way, hiding credential-stealing malware in steganographic QR codes embedded in a package purporting to offer a JavaScript utility.
Infosecurity-magazine.com

npm Package Uses QR Code Steganography to Steal Credentials

A malicious npm package named Fezbox has been found using an unusual technique to conceal harmful code. The package employs a QR code as part of its obfuscation strategy, ultimately aiming to steal ...
InfoWorld

QR codes become the vehicle for malware in new technique

A newly-discovered malicious package with layers of obfuscation is disguised as a utility library, with malware essentially hiding in plain sight in embedded QR codes. QR codes are ubiquitous these ...
coincentral

ModStealer Malware Targets Cryptocurrency Users and Spreads via Fake Job Ads

ModStealer malware targets cryptocurrency wallets and is undetected by antivirus tools. ModStealer spreads via fake recruiter ads and steals data from 56 browser wallet extensions. The malware ...
GitHub

Is there a way to keep the backtick string in the obfuscation result?

Hi, thank you for creating this obfuscation plugin. I have a small question. I created a browser extension and uploaded it to the Chrome store. I want to use your obfuscation method in a very small ...