New Infinity Stealer malware grabs macOS data via ClickFix lures

A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler.
ConsumerAffairs

How to spot the new wave of QR code and shopping site scams

QR codes and fake shopping sites are becoming go-to tools for scammers, often redirecting consumers to convincing but malicious payment pages or lookalike retail websites. Red flags include unusual QR ...
Bleeping Computer

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extensions on GitHub, npm, and VSCode/OpenVSX extensions. Evidence ...
Cybernews

Researchers warn that macOS users face browser credential-stealing attack

A new macOS malware campaign uses a fake CAPTCHA ClickFix trick to lure users into running Terminal commands, delivering a stealthy infostealer compiled with Nuitka ...

A 4 a.m. scramble turned Anthropic's leak into a 'workflow revelation'

Sigrid Jin woke up to chaos and shipped "Claw Code" by breakfast. Here's everything it taught the world.

WhatsApp notifies hundreds of users who installed a fake app that was actually government spyware

The Meta-owned company said it identified around 200 users who were tricked into installing a fake version of WhatsApp that ...
Hosted on MSN

How to detect fake Amazon reviews with these useful tools

Tech expert ThioJoe shows how to detect fake Amazon reviews with useful tools. 'Stay calm India': No shortage of petrol or diesel, say Indian Oil, Bharat Petroleum and others; urge public to avoid ...
The Hacker News

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.