The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows ...

Dubbed InstallFix by Push Security, the scheme inserts instructions to download malware during the Claude Code install ...

Hackers are impersonating IT staff in Microsoft Teams to trick employees into installing malware, giving attackers stealthy ...

InstallFix delivers an infostealer to your device.

Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users ...

A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.

Hackers abused Bing AI search results to promote fake OpenClaw installers on GitHub, spreading Vidar infostealer and other ...

Because the page precisely copies the original instructions, users may not notice the difference when copying and executing installation commands,” the cybersecurity company reports. The exact ...

Scammers are sending fake calendar “renewal” notices impersonating Malwarebytes to trick victims into calling a fake billing number.

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

"Living Off the Land" attacks use built-in tools and processes instead of traditional malware.