https://hackingpassion.com/tags/rat/Recent content in Rat on HackingPassion.com : root@HackingPassion.com-[~]HugoenSat, 11 Apr 2026 12:52:30 +0200https://hackingpassion.com/desckvb-rat-fileless-malware-2026/Sat, 11 Apr 2026 12:52:30 +0200https://hackingpassion.com/desckvb-rat-fileless-malware-2026/<p>A Remote Access Trojan called DesckVB has been actively hitting systems throughout 2026, running almost entirely inside memory with barely anything written to disk, hiding its final payload inside a process it names <strong>Microsoft.exe</strong>, and attempting to switch off the camera LED before streaming video back to the attacker. A cracked version of the builder is already circulating freely, meaning attackers with minimal skills can deploy this today without writing a single line of code. Forensics teams sweep these machines afterward and find very little. The system looks completely clean. 😏</p>https://hackingpassion.com/axios-npm-supply-chain-attack/Sat, 04 Apr 2026 13:50:24 +0200https://hackingpassion.com/axios-npm-supply-chain-attack/<p>Axios, the JavaScript library with over <strong>100 million weekly downloads</strong>, was compromised on March 31st. For roughly three hours, every fresh install of those two versions silently dropped a <strong>remote access trojan</strong> on the machine that ran it. Windows, macOS, and Linux, all targeted. The installation completed normally, nothing flagged the change, and the backdoor was already running by the time the command finished. 😏</p> <p>Axios is a JavaScript HTTP client that developers use to send web requests from their applications. It ships inside frontend frameworks, backend services, mobile apps, and <strong>CI/CD pipelines</strong>, and if a company runs Node.js anywhere in their stack, Axios is almost certainly somewhere in that dependency tree. That is what made this attack so significant.</p>