Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems. Threat actors are exploiting a common developer habit — ...

Attackers can target the Foxit PDF Reader and PDF Editor applications. Security patches are available for download.

Threat actors have used generative artificial intelligence (GenAI) to write malicious code in the wild to spread an open source remote access Trojan (RAT). It's one of the first observed examples of ...

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Do not download ...

PCWorld covers emerging cybersecurity threats including AI-powered ransomware, deepfake scams, malicious browser extensions targeting crypto wallets, and vulnerabilities in smart devices and printers.

The open-source database management system Firebird is vulnerable in several ways. It can allow malicious code onto systems.

A new campaign creates a fake BSOD to install malware. The campaign tricks users into installing a remote access trojan. If executed, the RAT can remotely access the infected PC. The Windows Blue ...

Malicious Visual Studio Code extensions were discovered on the VSCode marketplace that download heavily obfuscated PowerShell payloads to target developers and cryptocurrency projects in supply chain ...

An unknown threat actor is deploying a large-scale, sophisticated cryptojacking campaign through a series of malicious extensions in Visual Studio Code, Microsoft’s lightweight source-code editor, ...

Researchers uncover a malicious npm dependency linked to an AI‑assisted code commit that steals sensitive data and exposes ...