Resources

Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens

Cybersecurity researchers have disclosed details of a new malicious package on the npm repository that works as a fully functional WhatsApp API, but also contains the ability to intercept every message and link the attacker’s device to a victim’s WhatsApp account.
The package, named “lotusbail,” has been downloaded over 56,000 times since it was first uploaded to the registry by a user named “

Related resources

27 September 2025

China-Linked PlugX and Bookworm Malware Attacks Target Asian Telecom and ASEAN Networks

Telecommunications and manufacturing sectors in Central and South Asian countries have emerged as the target of an ongoing campaign distributing a new variant of a known malware called PlugX (aka […]

3 October 2025

CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting Smartbedded Meteobridge to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. […]

24 December 2025

New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper

Cybersecurity researchers have discovered a new variant of a macOS information stealer called MacSync that’s delivered by means of a digitally signed, notarized Swift application masquerading as a messaging app […]

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

Microsoft Is Finally Killing RC4

Resources

Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens

Related resources

China-Linked PlugX and Bookworm Malware Attacks Target Asian Telecom and ASEAN Networks

CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild

New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper

Links

Enterprise Solutions

SMB Solutions

Contact Us

Follow Us