Microsoft

Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access

Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in ...
The Hacker News

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Microsoft says hotel phishing emails are using Calendly links and photo ZIP files to drop the TonRAT Node.js implant on front ...
Developer Tech

ONLYOFFICE Docs Developer: Secure document editing in your own app

Secure document editing in your own app. ONLYOFFICE Docs Developer equips web applications with secure, latency-free document ...
GitHub

Node.js & JavaScript SDK for Coinbase's Advanced Trade, App, Exchange, International, Prime & Commerce REST APIs and WebSockets

Upcoming change: As part of the Siebly.io brand, this SDK will soon be hosted under the Siebly.io GitHub organisation. The migration is seamless and requires no user ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
GitHub

claude-office-skills/claude-office-plugin

WPS Office Excel AI 助手——通过自然语言对话操控表格,由 Claude API 驱动。 claude-wps-plugin/ ├── src/ # React 前端(TaskPane 侧边栏 ...