Malware

3 minute read

Fake Job Interview Apps Drop JobStealer Malware on Windows and macOS

Hackers are using Fake interview apps to spread JobStealer malware on macOS and Windows to steal crypto wallets, browser data, and passwords.

byWaqas

May 14, 2026

2 minute read

FamousSparrow Targeted Oil and Gas Industry via MS Exchange Server Exploit

Bitdefender Labs reveals how the China-linked FamousSparrow hacking group targeted an Azerbaijani energy firm using ProxyNotShell, Deed RAT,…

byDeeba Ahmed

May 14, 2026

4 minute read

TeamPCP Used Mini Shai-Hulud Worm to Poison Over 400 npm and PyPI Packages

Research reveals that TeamPCP hijacked OIDC tokens to poison hundreds of TanStack, Mistral AI, and UiPath packages with the self-propagating Mini Shai-Hulud worm.

byDeeba Ahmed

May 13, 2026

3 minute read

Fake Claude Code Installer Targets Developers With Browser Credential Stealer

Researchers at Ontinue have discovered an undocumented malware campaign targeting developers with fake Claude Code installers to steal browser passwords and cookies.

byDeeba Ahmed

May 12, 2026

3 minute read

Operation HumanitarianBait Uses Fake Aid Documents to Deploy Python Spyware

Operation HumanitarianBait uses fake aid documents, GitHub-hosted payloads, and Python spyware to target Russian-speaking victims.

byDeeba Ahmed

May 12, 2026

3 minute read

Hackers Trick DigiCert Into Issuing Certificates Used to Sign Malware

DigiCert revokes 60 code signing certificates after hackers used a malicious support chat attachment to sign the Zhong Stealer malware.

byDeeba Ahmed

May 10, 2026

2 minute read

Hackers Hijack JDownloader Site to Deliver Malware Through Installers

JDownloader confirms a security breach where hackers manipulated official download links to distribute malicious files between 6 and 7 May 2026.

byDeeba Ahmed

May 10, 2026

2 minute read

Fake macOS Troubleshooting Sites Used to Steal iCloud Data in ClickFix Scam

Microsoft researchers warn of a new ClickFix campaign targeting macOS with fake guides on Medium and Craft to deploy AMOS and SHub Stealer via Terminal commands.

byDeeba Ahmed

May 8, 2026

2 minute read

Hackers Use Fake Claude AI Site to Infect Users With New Beagle Malware

Researchers have discovered a new malvertising campaign using a fake Claude AI website to plant a new, undocumented backdoor named Beagle on user devices.

byDeeba Ahmed

May 7, 2026

2 minute read

FEMITBOT Network Abuses Telegram Mini Apps for Crypto Scams and Android Malware

A massive fraud network called FEMITBOT uses Telegram Mini Apps and fake brand names like Apple, Disney, and…

byDeeba Ahmed

May 5, 2026

The Latest

Fake Job Interview Apps Drop JobStealer Malware on Windows and macOS

How Fintech APIs Are Modernizing Business Cash Flow Management

FamousSparrow Targeted Oil and Gas Industry via MS Exchange Server Exploit

China-Linked Twill Typhoon Uses Fake Apple and Yahoo Sites for Espionage

Fake Job Interview Apps Drop JobStealer Malware on Windows and macOS

FamousSparrow Targeted Oil and Gas Industry via MS Exchange Server Exploit

TeamPCP Used Mini Shai-Hulud Worm to Poison Over 400 npm and PyPI Packages

Fake Claude Code Installer Targets Developers With Browser Credential Stealer

Operation HumanitarianBait Uses Fake Aid Documents to Deploy Python Spyware

Hackers Trick DigiCert Into Issuing Certificates Used to Sign Malware

Hackers Hijack JDownloader Site to Deliver Malware Through Installers

Fake macOS Troubleshooting Sites Used to Steal iCloud Data in ClickFix Scam

Hackers Use Fake Claude AI Site to Infect Users With New Beagle Malware

FEMITBOT Network Abuses Telegram Mini Apps for Crypto Scams and Android Malware

Lyrie.ai Joins First Batch of Anthropic’s Cyber Verification Program

LuxSci Launches Enterprise-Grade HIPAA-Compliant Email Security for Mid-Sized Healthcare Organizations

Criminal IP and Securonix ThreatQ Collaborate to Enhance Threat Intelligence Operations

Brinker Introduces a Novel Approach to Deepfake Detection

BreachLock Named Representative Vendor in the 2026 Gartner Market Guide for Adversarial Exposure Validation