The Hacker News

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.

StrongKey Introduces Unprecedented Security Defenses for Small and Medium Businesses

CUPERTNIO, CA, UNITED STATES, March 10, 2026 /EINPresswire.com/ -- StrongAuth, Inc. (dba StrongKey) announced the ...

New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.