The campaign spans npm, Packagist, Go, and Chrome, using obfuscated JavaScript loaders and VS Code tasks to deliver malware.
Enterprise admins can now re-enable the MSIX ms-appinstaller protocol handler that Microsoft earlier disabled after Emotet malware was used by threat actors to exploit the feature to deliver malicious ...