The Hacker News

First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials

First malicious Outlook add-in abused an abandoned domain to host a fake Microsoft login page, stealing 4,000+ credentials in a supply chain attack.
InfoWorld

Reactive state management with JavaScript Signals

Learn how frameworks like Solid, Svelte, and Angular are using the Signals pattern to deliver reactive state without the ...

‘Dead’ Outlook add-in hijacked to phish 4,000 Microsoft Office Store users

A hacker noticed the change in its status and hijacked the dead add-in and its 4.71-star rating to conduct a phishing campaign that the company which uncovered the attack, plug-in security company Koi ...
Windows Report

Hackers Hijack Outlook Add-In to Steal 4,000+ Microsoft Accounts

Hackers hijacked a legitimate Outlook add-in and turned it into a phishing kit, stealing over 4,000 Microsoft credentials ...

Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...

Popular Microsoft Outlook add-in hijacked to try and steal user accounts

A Microsoft Outlook add-in was abandoned and taken over by hackers, who used it to collect email accounts and banking data.