TechBooky

Leaked & Exploited Claude Code Distributes Infostealer Malware On GitHub

In order to spread Vidar information-stealing malware, threat actors are taking advantage of the recent Claude Code source ...

Security News This Week: Hackers Are Posting the Claude Code Leak With Bonus Malware

Plus: The FBI says a recent hack of its wiretap tools poses a national security risk, attackers stole Cisco source code as ...

Claude Code leak used to push infostealer malware on GitHub

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...

North Korean hackers bug software used by thousands of US companies in potential crypto heist attempt

Suspected North Korean hackers have bugged a software package that has been used by thousands of US companies in a major ...

FBI Warns iPhone And Android Users—Do Not Install These Apps

It should be obvious — but unfortunately it’s not. Some of the most popular apps you have likely downloaded on your iPhone or ...
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

New Password Stealer Bypasses 2FA—Chrome, Edge And Firefox Targeted

This new Storm attack platform can exfiltrate passwords and session data, enabling 2FA bypass. Google Chrome, Microsoft Edge ...

Apple expands iOS 18 updates to more iPhones to block DarkSword attacks

Apple has now made it possible for more iPhones still running iOS 18 to receive security updates that protect against the ...
The Hacker News

Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners

REF1695 spreads RATs and miners since Nov 2023 via ISO lures, earning 27.88 XMR across four wallets through cryptomining and ...
CNET

You Need to Download This iOS 18 Update ASAP if You Aren't on iOS 26

Apple doesn't regularly release a critical update for previous iOS versions but DarkSword appears to be a serious threat.
The Hacker News

Claude Code Source Leaked via npm Packaging Error, Anthropic Confirms

Claude Code 2.1.88 leak exposed 512,000 lines via npm error, fueling supply chain risks and typosquatting attacks.

Fake Google Meet update lets hackers control your Windows PCs

A fake Google Meet update page can trick Windows users into enrolling their computers in attacker-controlled remote ...