Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows ...

Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users ...

Most SEO work means tab-switching between GSC, GA4, Ads, and AI tools. What if one setup could cross-reference them all?

AI assistants like Grok and Microsoft Copilot with web browsing and URL-fetching capabilities can be abused to intermediate command-and-control (C2) activity. Researchers at cybersecurity company ...

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.

A newly identified botnet loader is shifting command-and-control (C2) operations onto the Polygon blockchain, eliminating the central servers that authorities and security firms have historically ...

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.

InstallFix delivers an infostealer to your device.

Distributed through over 100 GitHub repositories, the BoryptGrab stealer targets browser, wallet, system, and other user data ...

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

Researchers at Endor Labs uncovered 88 new packages tied to new waves of the campaign, which uses remote dynamic dependencies to deliver credential-stealing malware.

A newly discovered InstallFix campaign relies on malicious commands on cloned installation webpages to trick victims into installing malware.