The Hacker News

Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware Attacks

AI-generated Slopoly malware used by Hive0163 in 2026 attacks maintained access for over a week, highlighting how AI ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware Delivery

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be ...
XDA Developers on MSN

I tore apart the most common Linux malware in a sandbox, and it uses layer after layer of tricks to survive

It uses some of the oldest tricks in the book.
SecurityWeek

‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload

BlackSanta is a malware module that kills EDR and AV at the kernel level prior to unleashing the malware’s final purpose.

Fake Claude Code Spreads Malware to Windows, macOS Users

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows ...
heise online

Malware: Qakbot distributed with false captchas

The malware Qakbot flew under the radar for a long time – now IT researchers have detected new variants of the Trojan. They are currently finding victims via fake "Clickfix Captchas". The German ...
Ars Technica

AutoIt v3 Script (UpxGui.exe), a malware or a false positive?

Yesterday I did a scan (with Avast!) of my \system32 directory and I was pretty surprised when I found out that I am supposedly infected (the .exe file in question: "UpxGui.exe"). After further ...
How-To Geek on MSN

Look out for malware when downloading models to 3D print

Something else to worry about.