The Hacker News

New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds

Rokarolla targets 217 banking and crypto apps with 137 commands, enabling PIN, SMS code, and crypto payment theft.

Fake Claude Code Installers Deliver Credential-Stealing Malware

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other sensitive data.

Scammers are using a fake captcha hack to steal your personal information: ‘Verify you’re human.’ Here’s the big red flag to watch for

Clicking a captcha "I am not a robot" box and identifying images to prove it is second nature for many internet users. Now, cybercriminals are exploiting people's comfort with the routine to scam them ...

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...

Microsoft’s open source tools were hacked to steal passwords of AI developers

Microsoft shut down dozens of GitHub code repositories for Azure and AI coding tools after a reported hack.
HotHardware

Google Flags AI Malware Surge As Hackers Use LLMs To Mutate Code On-The-Fly

The industry-wide effort to AI all the things isn't without its seedy side. Namely, we're quickly entering an era of more sophisticated malware strains evading common antivirus protections, with ...
Hosted on MSN

Yes, criminals are using AI to vibe-code malware

Interview With everyone from would-be developers to six-year-old kids jumping on the vibe coding bandwagon, it shouldn't be surprising that criminals like automated coding tools too.… "Everybody's ...
Dark Reading

Npm Package Hides Malware in Steganographic QR Codes

Attackers have poisoned a code package on the npm registry in a novel way, hiding credential-stealing malware in steganographic QR codes embedded in a package purporting to offer a JavaScript utility.
9to5Mac

Security Bite: macOS malware ‘Banshee’ found using Apple’s own code to evade detection

9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to ...
InfoWorld

QR codes become the vehicle for malware in new technique

A newly-discovered malicious package with layers of obfuscation is disguised as a utility library, with malware essentially hiding in plain sight in embedded QR codes. QR codes are ubiquitous these ...
Infosecurity-magazine.com

Swiss Cyber Agency Warns of QR Code Malware in Mail Scam

A new malware campaign targeting Swiss residents through fake postal letters has been uncovered by the country’s National Cyber Security Centre (NCSC). The scam involves fraudulent correspondence ...
Forbes

Malware 2.0: 7 Strategies To Outsmart A Smarter Adversary

Global cybercrime costs are expected to grow by 15 percent per year over the next five years—with malware and ransomware driving a significant portion. Malware has been part of the cybersecurity story ...