n8n Supply Chain Attack Exploits Community Nodes In Google Ads Integration to Steal Tokens

Hackers were found uploading a set of eight packages on the npm registry that pretended as integrations attacking the n8n workflow automation platform to steal developers’ OAuth credentials.  About the exploit  The package is called “n8n-nodes-hfgjf-irtuinvcm-lasdqewriit”, it copies Google Ads…

AsyncRAT Campaign Abuses Cloudflare Services to Hide Malware Operations

  Cybercriminals distributing the AsyncRAT remote access trojan are exploiting Cloudflare’s free-tier services and TryCloudflare tunneling domains to conceal malicious infrastructure behind widely trusted platforms. By hosting WebDAV servers through Cloudflare, attackers are able to mask command-and-control activity, making detection…