ClickFix malware attacks evolve with multi-OS support, video tutorials

ClickFix attacks have evolved to feature videos that guide victims through the self-infection process, a timer to pressure ...
The Hacker News

Vibe-Coded Malicious VS Code Extension Found with Built-In Ransomware Capabilities

Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities ...

Indian Government Warns Google Chrome Users Of Severe Security Flaws: Here’s How To Stay Safe

Google Chrome users on desktop platforms such as Windows, macOS, and Linux are urged to update their browsers due to a ...
InfoWorld

How GlassWorm wormed its way back into developers’ code — and what it says about open source security

Weeks after being declared eradicated, GlassWorm is again infesting open source extensions using the same invisible Unicode ...
InfoWorld

Agentic coding with Google Jules

Jules performs better than Gemini CLI despite using the same model, and more like Claude Code and OpenAI Codex.

Gootloader malware is back with new tricks after 7-month break

The Gootloader malware loader operation has returned after a 7-month absence and is once again performing SEO poisoning to ...

ViVeTool: Unlock Windows features Microsoft doesn’t want you to see

The tool works on all current builds of Windows 10 and Windows 11 and uses the same internal A/B test logic that Microsoft ...
The Hacker News

Google Uncovers PROMPTFLUX Malware That Uses Gemini AI to Rewrite Its Code Hourly

Google on Wednesday said it discovered an unknown threat actor using an experimental Visual Basic Script (VB Script) malware ...
India Today on MSN

Google Chrome users in India at risk, Govt urges immediate update to prevent attacks

CERT-In has issued a high-severity warning for users of Google Chrome across Windows, macOS, and Linux, citing multiple ...
Make Tech Easier

Ethical Hacking Tool RedTiger Abused to Steal Browser and Discord Data – How to Stay Safe

Hackers have turned the RedTiger toolkit into a data-stealing weapon. This post breaks down the threat and the steps to keep your PC safe.

Infostealer for Windows, macOS and Linux found in ten packages on npm

The npm packages were available since July, have elaborately obfuscated malicious routines, and rely on a fake CAPTCHA to ...