JFrog

The Latest

8 Top SAST Tools for Polyglot Monorepos and Platform Engineering in 2026

Woodgnat Hackers Use Mistic RAT to Broker Access for Ransomware Gangs

macOS Flaw Allowed Standard Users to Disable CrowdStrike and Kandji Security Tools

A decade of infrastructure development, one new name: Coinspaid Dev

Fake npm Packages impersonate Popular post-css Tool to Steal Chrome Passwords

Fake npm Packages Impersonate PostCSS Tool to Steal Chrome Passwords

JFrog warns of malicious npm packages that mimic PostCSS tooling, drop a Windows RAT, and target Chrome-stored passwords through a staged infection setup route.

byDeeba Ahmed

June 24, 2026

8 Malicious NPM Packages Stole Chrome User Data on Windows

JFrog researchers found eight malicious NPM packages using 70 layers of obfuscation to steal data from Chrome browser…

byDeeba Ahmed

August 29, 2025

The Latest

8 Top SAST Tools for Polyglot Monorepos and Platform Engineering in 2026

Woodgnat Hackers Use Mistic RAT to Broker Access for Ransomware Gangs

macOS Flaw Allowed Standard Users to Disable CrowdStrike and Kandji Security Tools

A decade of infrastructure development, one new name: Coinspaid Dev

JFrog

Fake npm Packages Impersonate PostCSS Tool to Steal Chrome Passwords

8 Malicious NPM Packages Stole Chrome User Data on Windows

A decade of infrastructure development, one new name: Coinspaid Dev

Internet Society Foundation Opens Global Call for Common Good Cyber Fund to Strengthen Cybersecurity

Gcore Helps Ucom Safeguard Public Live Broadcast Infrastructure During Armenia’s Parliamentary Elections

eFAQ Publishes Investigation Into Alleged Scam Activity and Coordinated Reputation Attacks

SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies