HackingPassion.com
👻 home posts ethical hacking course newsletter shop whoami github youtube
HackingPassion.com

Credential-Theft

7 posts

/atomic-arch-aur-malware/atomic-arch-aur-malware.png
Hackers Hijacked 400 Arch Linux AUR Packages to Install Malware

June 13, 2026

More than 400 packages in the Arch User Repository (AUR) were hijacked this week, and the attacker never broke into a single system to do it. They took over …

/google-api-key-23-minutes/featured-image.png
Google API Keys Keep Working for 23 Minutes After You Delete Them

May 23, 2026

Google tells you the key is gone. It keeps working for 23 more minutes. When you delete a Google API key, a dialog appears that says the following: “Once …

/voidstealer-chrome-abe-bypass/featured-image.png
VoidStealer Steals Chrome Master Key Using a Debugger Trick

May 20, 2026

Chrome keeps saved passwords locked behind one master key. VoidStealer steals that key using a tool Chrome cannot block. It does not need administrator rights, …

/pamdoora-linux-ssh-backdoor/featured-image.png
PamDOORa Steals SSH Credentials on Linux by Hiding Inside PAM Where No Antivirus Looks

May 10, 2026

A backdoor called PamDOORa targets Linux systems through PAM and steals SSH credentials from every user who logs in. It leaves no trace in process lists, …

/microsoft-edge-cleartext-passwords/featured-image.png
Microsoft Edge Stores Every Saved Password in Cleartext Memory at Startup

May 5, 2026

Microsoft Edge loads every saved password into memory the moment the browser opens. They sit there in plain readable text for the entire session, even for sites …

/bitwarden-cli-supply-chain-attack/featured-image.png
Bitwarden CLI Backdoored on npm for 93 Minutes

April 24, 2026

Bitwarden’s CLI was backdoored and pushed to npm on April 22, 2026. It was live for 93 minutes. Every developer who installed it during that window has to …

/pypi-supply-chain-attack-xinference-teampcp/featured-image.png
How TeamPCP Poisoned Six Python Packages and Breached Over 1000 Organizations in Five Weeks

April 23, 2026

A group of attackers has been quietly poisoning Python packages for five weeks straight. They have exfiltrated data from over 500,000 infected machines, hit …