nodejs

NOVABLIGHT: New NodeJS Infostealer-as-a-Service Unmasked, Fueled by Fake Games & Disguised as “Educational” NOVABLIGHT, Infostealer MaaS

NOVABLIGHT, Infostealer MaaS

NOVABLIGHT: New NodeJS Infostealer-as-a-Service Unmasked, Fueled by Fake Games & Disguised as “Educational”

Do Son July 31, 2025

Elastic Security Labs has exposed the inner workings of NOVABLIGHT, a highly modular, NodeJS-based Malware-as-a-Service (MaaS) information...

Mocha Manakin: New Threat Group Uses “Paste and Run” to Deploy Custom NodeJS RAT! Mocha Manakin, NodeInitRAT

Mocha Manakin, NodeInitRAT

Mocha Manakin: New Threat Group Uses “Paste and Run” to Deploy Custom NodeJS RAT!

Do Son June 23, 2025

Red Canary has unveiled a new adversary cluster it’s been tracking since early 2025: Mocha Manakin. Named...

CVE-2024-27980: Critical Node.js Update Patches Windows Command Injection Flaw CVE-2024-27980 Node.js Vulnerability CVE-2025-55131

CVE-2024-27980 Node.js Vulnerability CVE-2025-55131

CVE-2024-27980: Critical Node.js Update Patches Windows Command Injection Flaw

Do Son April 10, 2024

The Node.js project has released an urgent security update addressing a critical command injection vulnerability (CVE-2024-27980) on...

Update Beware! “Coyote” Trojan Uses Disguise to Infiltrate Brazilian Banks Coyote banking Trojans

Coyote banking Trojans

Update Beware! “Coyote” Trojan Uses Disguise to Infiltrate Brazilian Banks

Do Son February 8, 2024

Recently, researchers at Kaspersky Labs uncovered a new breed of banking Trojans dubbed “Coyote.” Unlike its predecessors,...