August 7, 2017 Typosquatting Attack Puts Developers at Risk From Infected JavaScript Packages 2 min read - Investigations by npm, a Node.js management registry, revealed that an errant attacker uploaded 38 malicious JavaScript packages on the repository.
July 13, 2017 Let’s Get Physical: Malicious Script Magecart Expands Impact With Fraudulent Mail Forwarding 2 min read - Malicious script Magecart is still going strong, allowing threat actors to hire U.S. mules to ship fraudulently purchased goods.
Application Security March 13, 2017 Inside the Mind of a Hacker: Attacking Web Pages With Cross-Site Scripting 5 min read - Web application developers must learn to think like cybercriminals to combat the growing threat of cross-site scripting (XSS) attacks.
January 31, 2017 Google’s JavaScript Ban Boosts SVG Image Misuse 2 min read - Cybercriminals have responded to Google's impending JavaScript ban by launching phishing attacks that seek to spread via infected SVG image files instead.
October 18, 2016 Swiped! Malicious JavaScript Infection Cracks Credit Card Data 2 min read - Malicious JavaScript has infected over 6,000 online stores, compromising consumer credit card data and reinforcing the need for active online security.
August 18, 2016 Proxy Connects Show Evidence of a Software Vulnerability 2 min read - A security researcher recently discovered a software vulnerability that allows attackers to exploit the way applications respond to HTTP CONNECT requests.
August 11, 2016 Chrome HTML5 Update: Less Flashy, More Secure 2 min read - HTML5 isn't perfect, but Flash simply can't complete. The HTML5 update will result in reduced power consumption and faster load times.
June 27, 2016 Flash or HTML5? Malvertising-Makers Will Happily Hijack Both 2 min read - More ad providers are moving to HTML5 to prevent malvertising, but this shift alone isn't enough to deter cybercriminals from their exploits.
June 16, 2016 RAA Ransomware Is All JavaScript, Researchers Say 2 min read - Security researchers recently discovered RAA ransomware, which leverages its JavaScript code makeup to trick users into thinking it's legitimate.
Advanced Threats March 8, 2016 Ransomware Takes a Scary Turn Using JavaScript 2 min read - A relatively new type of ransomware called Ransom32 is leveraging JavaScript to bypass detection tools and infect computer systems.