AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
Decrypt

Bybit Launches AI Skills: Powering AI Agents for Crypto Trading With Zero Setup, 253 API Endpoints and Growing

Command Line Interface (CLI), Software Development Kit(SDK) or configuration files — get started instantly. Universal AI compatibility: Works with all major AI platforms and assistants. Automatic ...
Microsoft

Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...