PCMag

This New Malware Lives on the Blockchain and Can't Ever Be Deleted. Here's What It Can Do

Hundreds of thousands of credentials from hundreds of companies are already compromised. Experts warn the campaign could ...
MUO on MSN

Yes, you can get malware just by visiting a website

It's not even your browser's fault.
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...
PC Magazine

Malware Is Sleeping on the Blockchain, and It's Already Infected Dozens of Global Targets

It started with a work offer. Last year, the blockchain crime-detection firm Crystal Intelligence’s then-vice president of ...
WCVB Channel 5 Boston

This new scam could trick you into downloading malware

This scam is alarming and something that many people could fall victim to if they are not careful. The Identity Theft Resource Center warns that criminals are creating realistic looking fake captcha ...
MarketWatch

CodeHunter Wins 2026 Global InfoSec Award for Next-Gen Behavioral Malware Analysis at RSAC 2026 Conference

The MarketWatch News Department was not involved in the creation of this content. TYSONS, Va., March 23, 2026 (GLOBE NEWSWIRE) -- CodeHunter, the Zero Trust for Code security company, today announced ...
Bleeping Computer

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extensions on GitHub, npm, and VSCode/OpenVSX extensions. Evidence ...
Ars Technica

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...
winbuzzer.com

Fake Claude Code Pages Spread Malware to Developers via Google Ads

Claude Code is Anthropic’s agentic coding tool that allows developers to run CLI commands and build long-running agents. This week, developers searching Google for it are landing on near-perfect ...
WeLiveSecurity

PromptSpy ushers in the era of Android threats using GenAI

ESET researchers uncovered the first known case of Android malware abusing generative AI for context-aware user interface manipulation. While machine learning has been used to similar ends already – ...
CSOonline

AI-powered polymorphic attack lures victims to phishing webpages

AI-fueled attacks can transform an innocuous webpage into a customed phishing page. The attacks, revealed in a research from Palo Alto Networks’ Unit 42, are clever in how they combine various ...
Easy Reader

Cracked macOS Apps Malware Explained: How Hackers Target Everyday Mac Users

Meta – Everyday Mac users are now a common target for hackers and one of the key ways they attempt to infiltrate the systems is through cracked macOS app malware. Hackers use many tools to launch ...