eWeek

Anthropic Drops ‘Figma-Killer’ as Canva Goes All-In on AI

Canva shifts to an AI-first platform as Anthropic unveils Claude Design, its Figma rival — drawing hype, skepticism, and ...
CyberGuy

Fake Windows update installs hidden malware

Fake Windows update spreads stealth malware that steals logins and data. Learn how it works and how to protect yourself.

The hidden risks of vibe coding: 4 steps to protect your organization

You can’t be sure where that AI-generated code came from or what malware it might contain. These 4 steps help mitigate ...

Anthropic won't own MCP 'design flaw' putting 200K servers at risk, researchers say

A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into ...
Security Boulevard

Payouts King Takes Aim at the Ransomware Throne

IntroductionIn February 2022, BlackBasta emerged as a successor to Conti ransomware and quickly rose to prominence. BlackBasta was operational for three years until February 2025 when their internal ...

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...
Infosecurity Magazine

APK Malformation Found in Thousands of Android Malware Samples

Android Package (APK) malformation has emerged as a standard Android malware evasion tactic, with the technique identified in ...
eWeek

OpenAI Rolls Out Locked-Down GPT-5.4-Cyber Model

A new model so sharp OpenAI put childproof caps on it. OpenAI has rolled out GPT-5.4-Cyber, a fine-tuned cousin of its ...

Malware campaign lures users with fake Windows Update website

Malwarebytes recently uncovered a new malicious campaign targeting the Windows Update service. Focused on French-speaking users, the campaign uses layered obfuscation techniques to deliver multiple ...

Do not fall for this fake Windows update support site. It’s spreading a password-stealing malware

Malwarebytes warns that a fake Microsoft support site is distributing password-stealing malware through a spoofed Windows update installer ...
The Hacker News

OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident

OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing ...

Two different attackers poisoned popular open source tools - and showed us the future of supply chain compromise

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...