With the rise of AI coding assistants continuing apparently unabated, some project maintainers have begun striking back. Ars Technica reports on projects putting hostile directions into the ...

A flaw in Anthropic’s Claude Code GitHub Action allowed a malicious GitHub issue from a bot actor to trigger workflows and ...

Weedhack malware targets Minecraft players via YouTube and SEO poisoning since Jan 2026, enabling credential theft and remote ...

Would-be vibe coders looking to experiment with Claude Code are being targeted by malicious install guide websites that pop up in Google search results and install malware when executed. Dubbed ...

The industry-wide effort to AI all the things isn't without its seedy side. Namely, we're quickly entering an era of more sophisticated malware strains evading common antivirus protections, with ...

A new malware campaign targeting Swiss residents through fake postal letters has been uncovered by the country’s National Cyber Security Centre (NCSC). The scam involves fraudulent correspondence ...

Cybersecurity researchers have uncovered a new advanced persistent threat (APT) targeting Russian government entities, dubbed CloudSorcerer. This sophisticated cyberespionage tool, discovered by ...

A newly discovered malware, dubbed 'WogRAT,' has emerged as a threat targeting both Windows and Linux operating systems. This malicious software utilizes an online notepad platform called "aNotepad" ...

Hacking the hackers: Gootloader is a long-running cyber-criminal operation based on an "initial access-as-a-service" model: the gang behind the malware infects organizations. Then it sells access to ...

Learn how to protect your organization and users from this Android banking trojan. Nexus malware is an Android banking trojan promoted via a malware-as-a-service model. The malware has been advertised ...