Bleeping Computer

‘PlushDaemon’ hackers hijack software updates in supply-chain attacks

A China-linked threat actor tracked as 'PlushDaemon' is hijacking software update traffic using a new implant called EdgeStepper in cyberespionage operations. Since 2018, PlushDaemon hackers have ...
Dark Reading

China's 'PlushDaemon' Hackers Infect Routers to Hijack Software Updates

For more than half a decade now, a Chinese state-aligned threat actor has been spying on Chinese organizations by infecting their trusted software updates. When the SolarWinds breach was unearthed in ...

Hackers exploit WhatsApp device-linking feature to hijack accounts

Hackers can hijack WhatsApp accounts without ever cracking passwords or encryptionGhostPairing attacks exploit legitimate device-linking features to gain full account accessUsers are tricked by fake ...