#malware-delivery
#malware-delivery

[ follow ]

Critical React Native Metro dev server bug under attack

A critical CVE-2025-11953 OS command-injection flaw in React Native's Metro dev server enables unauthenticated remote execution and malware delivery on Windows and Linux.

Information security

fromThe Hacker News

4 months ago

DPRK Hackers Use ClickFix to Deliver BeaverTail Malware in Crypto Job Scams

North Korea–linked actors used ClickFix lures to deliver BeaverTail and InvisibleFerret malware to non-developer cryptocurrency, retail, and Web3 roles via fake hiring platforms.

[ Load more ]

#malware-delivery#malware-delivery

Critical React Native Metro dev server bug under attack

DPRK Hackers Use ClickFix to Deliver BeaverTail Malware in Crypto Job Scams

#malware-delivery
#malware-delivery