Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
PCMag on MSN

Phony Claude code install guides trick Vibe coders into installing malware

Dubbed InstallFix by Push Security, the scheme inserts instructions to download malware during the Claude Code install ...
Microsoft

AI as tradecraft: How threat actors operationalize AI

Threat actors are operationalizing AI to scale and sustain malicious activity, accelerating tradecraft and increasing risk for defenders, as illustrated by recent activity from North Korean groups ...
PCMag

It Took Me Just 2 Hours to Vibe Code a Mass Surveillance Site With OpenAI's Codex

With zero coding skills, and in a disturbingly short time, I was able to assemble camera feeds from around the world into a ...
SecurityWeek

Over 100 GitHub Repositories Distributing BoryptGrab Stealer

Distributed through over 100 GitHub repositories, the BoryptGrab stealer targets browser, wallet, system, and other user data ...
The Hacker News

Anthropic Finds 22 Firefox Vulnerabilities Using Claude Opus 4.6 AI Model

Anthropic’s Claude Opus 4.6 AI found 22 Firefox vulnerabilities, including 14 high severity, helping Mozilla patch flaws in ...
The White House

PREDATORY SCHEMES AGAINST AMERICAN CITIZENS

By the authority vested in me as President by the Constitution and the laws of the United States of America, it is hereby ordered: Section 1.  Purpose and ...

OpenAI introduces Codex Security to help developers fix software vulnerabilities

Developers can activate OpenAI’s new tool by giving it access to the code repository they wish to scan. According to the ChatGPT developer, Codex Security creates a temporary copy of the repository in ...