🐼 4.3 Million Browsers Infected: Inside ShadyPanda's 7-Year Malware Campaign
Read now

Filter by

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Koi Research

The VS Code Malware That Captures Your Screen

Idan Dardikman

,

,

December 8, 2025

Koi Research

4.3 Million Browsers Infected: Inside ShadyPanda's 7-Year Malware Campaign

Tuval Admoni

,

,

December 1, 2025

Koi Research

Two Years, 17K Downloads: The NPM Malware That Tried to Gaslight Security Scanners

Yuval Ronen

,

,

November 30, 2025

Security Insights

When Claude Becomes a Cyber-Weapon: The AI Arms Race Has Begun

Idan Dardikman

,

,

November 14, 2025

Koi Research

GlassWorm Returns: New Wave Strikes as We Expose Attacker Infrastructure

Idan Dardikman

,

Yuval Ronen

,

Lotan Sery

November 6, 2025

Koi Research

PromptJacking: The Critical RCEs in Claude Desktop That Turn Questions Into Exploits

Oren Yomtov

,

,

November 5, 2025

Koi Research

PhantomRaven: NPM Malware Hidden in Invisible Dependencies

Oren Yomtov

,

Idan Dardikman

,

October 29, 2025

Koi Research

GlassWorm: First Self-Propagating Worm Using Invisible Code Hits OpenVSX Marketplace

Idan Dardikman

,

,

October 18, 2025

Koi Research

TigerJack's Extensions Continue to Rob Developers Blind Across Different Marketplaces

Tuval Admoni

,

,

October 13, 2025

Koi Research
Security Insights

Live Updates: Sha1-Hulud, The Second Coming - Hundreds of NPM Packages Compromised

Yuval Ronen

,

Idan Dardikman

,

November 24, 2025

Koi Research
Security Insights

Live Updates: Shai-Hulud, The Most Dangerous NPM Breach In History Affecting CrowdStrike and Hundreds of Popular Packages

Idan Dardikman

,

Yuval Ronen

,

September 16, 2025