Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
CSO Online

Notepad++ infrastructure hijacked by Chinese APT in sophisticated supply chain attack

The hosting provider's compromise allowed attackers to deliver malware through tainted software updates for six months.
PCMag on MSN

Chinese hackers hit Notepad++ to serve malicious update

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...
XDA Developers on MSN

Notepad++ has allegedly been spying on targeted users after a malicious update got in

The attacks came from a third-party and not from the Notepad++ team.
Barron's

RioCan Real Estate Investment Trust Un

RioCan Real Estate Investment Trust is a closed-end trust, which engages in owning, development, and management of retail-focused properties. Its property portfolio includes mixed-use or urban, ...
WinBuzzer

Malicious VS Code Extensions Steal Code from 1.5M Developers

Two malicious VS Code extensions have exfiltrated code snippets, API keys, and proprietary algorithms from 1.5 million ...