Malware coverage.

Malware scare keeps schoolkids home for a second day

Great Marlow restricts network access while it investigates suspected infection…

Android vs iOS security: which OS is safer? We compare their protections against theft, malware, snooping, and more

Your phone is at risk from thieves, viruses, snoopers, and dodgy apps, but Android and iOS both have tools to minimize the threats.…

Nobody needs Mythos or 0-days to build a chaos-causing computer worm – free open source models work just fine

'Attackers can now cheaply operationalize known vulnerabilities at scale,' boffins tell The Reg…

‘A Fundamentally New Threat’: Researchers Develop New AI-Powered Worm That Might Be Unstoppable

A team of researchers have shown how a self-replicating AI agent can take over a computer network at almost no cost.…

Weedhack malware campaign infects 116,000 mod-hungry Minecraft players systems through SEO poisoning and YouTube

Minecraft players looking for fun new ways to play are instead downloading infected modpacks and clients.…

Malvertising Campaign Spoofs GitHub to Deliver macOS Trojans

Evasive technique combines zero-width space (ZWSP) with Github spoofing to deliver malware through malvertising…

Steam Community Profiles abused as C2 network in new WordPress malware infection campaign

The comments on some Steam Profiles are actually loaded with invisible malware.…

The sorry state of skill distribution

We recently bypassed ClawHub’s malicious skill detector, Cisco’s agent skill scanner, and all three of the scanners integrated into skills.sh.…

AI Agents Enable Adaptive Computer Worms

A computer worm is malware that spreads on a network by replicating itself from one machine to another. Traditional worms, like WannaCry, exploited predetermined vulnerabilities, a…

Experts say ChatGPT, Gemini, and other Western AI models are turbocharging Iran's cyber operations, helping it develop malware and launch phishing attacks (Jacob Judah/Financial Times)

Jacob Judah / Financial Times : Experts say ChatGPT, Gemini, and other Western AI models are turbocharging Iran's cyber operations, helping it develop malware and launch phishing a…

Question of android malware

Lone attacker published 14 malicious NPM packages

And then Microsoft busted them all…

LLMShare: Attackers are turning AI chatbot pages into malware delivery platforms

How attackers are using shared content features on AI chatbot platforms to deliver malware via pages hosted on legitimate domains, sent via malvertising.…

Report warns that cybercriminals are exploiting Cockroach Janta Party’s popularity to con GenZ

A report reveals cybercriminals are using the Cockroach Janta Party's popularity to distribute malware targeting Gen Z Android users.…

Hackers are now using ChatGPT share links to deliver malware

Hackers are now abusing ChatGPT to generate malicious webpages that trick unsuspecting users into downloading malware onto their machines.…

Botnet of more than 17 million devices dismantled

The botnet was reportedly tied to a Russia-based residential proxy network.…

Is this malware?

This compact antivirus protection package is now less than £25 — Norton 360 has everything you need to secure your devices against malware, ransomware, and hacking

This compact antivirus package offers premium protection…

82% of IT pros report a web-based security incident in past year – BYOD, SaaS tools, and remote work policies all play a part in security resilience

Confidence among IT leaders is high, but hackers are abusing web-based attacks more than ever.…

Russia-linked threat group put ChatGPT to work from lure to payload

Researchers say 'GREYVIBE' crew used AI tools throughout a campaign targeting Ukrainian military and government…

I have a datastealer malware

Independent cyber audit finds zero malware or backdoors in DJI drones — U.S. firm's hardware analysis challenges FCC ban amid ongoing $1.56 billion legal battle

The same firm that inspects TikTok's U.S. platform found zero critical, high, or medium-risk issues across five months of testing.…

A Supply Chain Rat Exfiltrating to HuggingFace

Deep technical analysis of MicrosoftSystem64, an 81 MB Node.js SEA binary deployed via malicious npm packages. This RAT steals browser credentials, 80+ crypto wallet extensions, Te…

Microsoft warns GPU mining malware is being spread to users through SEO poisoning and AI chatbots — cryptojacking campaign targets gamers and high-end PC users with downloads disguised as popular PC utilities

Malware avoids detention by monitoring GPU usage and shutting down during heavy activity…

1,001 IPs, 64 countries, one operation: mapping a botnet by its back end

A single attacking IP tells you little. The back end it pulls its payload from, and the client fingerprint it presents, are the parts operators reuse. Correlating both across the s…

Hackers caught hiding OpenAI token-stealing malware in Codex npm package - Cybernews

Comprehensive up-to-date news coverage, aggregated from sources all over the world by Google News.…

New Threat Actor 'Jinx-0164' Targets Crypto Firms with Custom macOS Malware

A new threat actor, JINX-0164, is targeting cryptocurrency firms with custom macOS malware like the AUDIOFIX infostealer, using social engineering and supply chain attacks to steal…

'Threat actors are adapting social engineering and monetization strategies to modern user behavior': Microsoft warns AI chatbots may be sending victims to malicious websites — so be on your guard when clicking

What happens when an AI recommends a tool, and that tool ends up being malicious?…

Malware dev tries to steal Claude users' secrets, leaks own GitHub private token

Donald Trump is the only billionaire ever to occupy the Oval Office, and since returning to the precedency in January 2025, his family’s wealth has grown……

How I Found a Fake Job Assessment Repo Hiding Malware Inside SVG Files

Like a lot of developers in this market, I’ve been taking freelance assessments and Discord job leads...…

'Adversaries are no longer just targeting products, they're targeting the developers who build them': CrowdStrike takes down major botnet targeting developers across the world

The Glassworm botnet is no more, thanks to coordinated efforts between CrowdStrike, Google, and the Shadowserver Foundation.…

CrowdStrike and Google dismantle Glassworm botnet that targeted crypto wallet credentials through open source supply chains

CrowdStrike and Google dismantled the Glassworm botnet, which compromised 300+ open source packages and targeted 49 crypto wallet extensions for credential theft.…

MalShark: MCP-Powered Malware Traffic Analysis — Benchmarked Against Real Malware

MalShark: MCP-Powered Malware Traffic Analysis — Benchmarked Against Real Malware

Kash Patel's 'BasedApparel' website is apparently hosting ClickFix malware

The malware apparently only targets macOS users…

Hackers Exploit GTA 6 Hype to Spread Malware Via Fake Beta Tests

'We need you to help us build Vice City,' one of the scam sites says. The downloads are nothing but Windows-based malware, according to security researchers at NordVPN.…

Fake ChatGPT installers on GitHub are dropping Deno RATs

The post Fake software on GitHub and SourceForge distribute Deno RAT⤴︎  appeared first on Malwarebytes⤴︎.…

Millions of People Are Installing Malware on Their Partners’ Phones (with Zack Whittaker)

Joseph talks to Zack Whittaker all about stalkerware, the pervasive malware that ordinary people install on their partners' phones.…

Ghost CMS flaw hijacked to target hundreds of websites with ClickFix attacks — here's how to stay safe

A critical-level flaw in a popular CMS, patched months ago, is now being abused.…

Do I have malware? Sketchy betting website somehow got opened once

'Security of your network is essential to security of your robot': Industrial robots targeted by malware, which could open them up to hacking — is this how the revolution begins?

Critical Universal Robots vulnerability lets attackers execute commands directly on collaborative robots with full system-level privileges…

Megalodon cyberattack infects 5,500 GitHub open-source repositories with malware, researchers say

Security researchers say 5,500 GitHub repositories have been affected by the attack.…

GitHub hit with another major attack — Megalodon hits over 5,000 repos with malware-laden commits

A TeamPCP copycat was just spotted hitting thousands of GitHub repos with an infostealer.…

How Iranian threat actor Nimbus Manticore used techniques like AI-assisted malware development and SEO poisoning to target companies during the US-Iran war (Check Point Research)

Check Point Research : How Iranian threat actor Nimbus Manticore used techniques like AI-assisted malware development and SEO poisoning to target companies during the US-Iran war —…

Supply Chain Attacks Cluster: 230K Advisories, Five Patterns

Pulled the full OSV mirror for npm and PyPI — 230,000+ advisories. The malicious-tagged subset clusters into five recurring patterns. None of them are clever. All of them keep work…

More than 5,500 GitHub repositories were infected with malware in a supply chain attack, dubbed Megalodon, on May 18 that relies on automated commits (Ionut Arghire/SecurityWeek)

Ionut Arghire / SecurityWeek : More than 5,500 GitHub repositories were infected with malware in a supply chain attack, dubbed Megalodon, on May 18 that relies on automated commits…

Researchers flag TrapDoor malware campaign targeting crypto developer environments including Aptos, Sui and Solana

TrapDoor Malware Targets Crypto Developer Tools in Supply Chain Attack

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers ClickFix attack flows.…

Why doesn't Steam solve their malware games problem by running them in a sandboxxed environment?

Is there a way to disable the "hey! this might be malware!" popup for files in a specific folder?

Fake CAPTCHA scam can hack your computer

Fake CAPTCHA scams trick users into opening command windows and pasting malicious scripts, installing StealC malware that steals passwords silently.…

I’m learning C++ and cybersecurity, and I’m curious: are there any famous hacking stories where C++ was used to build tools, malware, exploits, or security research software? Real examples make learning more exciting for me.

Malwarebytes review: One of the most user-friendly and comprehensive antivirus software suites

Malwarebytes is extremely intuitive, and it provides robust protection against modern cyberthreats thanks to Scam Guard and Digital Footprint Scanner.…

Capcha Code Malware

'Mainstream malware now regularly affects macOS users' — inside the relentless rise of the AMOS infostealer, one of the most dangerous macOS malware ever developed

Sophos investigation reveals AMOS malware uses social engineering, while nearly half of the macOS stealer reports link to the same family…

Codex is flagged as malware on macOS

What version of the Codex App are you using (From “About Codex” dialog)? Version 26.513.31313 (2867) What subscription do you have? Business What platform is your computer? macOS W…

Laravel Lang packages hijacked to deploy credential-stealing malware

A supply chain attack targeting the Laravel Lang localization packages has exposed developers to a sophisticated credential-stealing malware campaign after attackers abused GitHub …

Laravel Lang packages hijacked to deploy credential-stealing malware

Kash Patel's Apparel Site Is Trying To Trick Visitors Into Installing Malware