Windows Report

Hackers Hijack Outlook Add-In to Steal 4,000+ Microsoft Accounts

Hackers hijacked a legitimate Outlook add-in and turned it into a phishing kit, stealing over 4,000 Microsoft credentials ...

‘Dead’ Outlook add-in hijacked to phish 4,000 Microsoft Office Store users

A hacker noticed the change in its status and hijacked the dead add-in and its 4.71-star rating to conduct a phishing campaign that the company which uncovered the attack, plug-in security company Koi ...
The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...

Popular Microsoft Outlook add-in hijacked to try and steal user accounts

A Microsoft Outlook add-in was abandoned and taken over by hackers, who used it to collect email accounts and banking data.
CSO Online

Open source maintainers being targeted by AI agent as part of ‘reputation farming’

“Once contribution and reputation building can be automated, the attack surface moves from the code to the governance process around it. Projects that rely on informal trust and maintainer intuition ...