The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

A new Android malware called Perseus is checking user-curated notes to steal sensitive information, like passwords, recovery ...

The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems.

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

Six Android malware families discovered targeting banking apps and crypto wallets, exploiting accessibility features to steal funds and data.

Think before you download OpenClaw, the AI agent that can manage just about anything, is risky all by itself, but now fake installers for it are wreaking havoc. Users who searched Bing’s AI results ...

"Living Off the Land" attacks use built-in tools and processes instead of traditional malware.

The investigation is being led by the FBI’s Seattle Division, which recently launched an online portal asking potential victims to report if they installed certain Steam games that contained malicious ...

We found fake “verify you are human” pages on hacked WordPress sites that trick Windows users into installing the Vidar ...

Fake OpenClaw installers on GitHub deployed credential stealers and a proxy tool linked to the Black Basta ransomware group, while Bing's AI served the malicious ...

IntroductionThreat actors often take advantage of major global events to fuel interest in their malicious activities. Zscaler ThreatLabz is diligently tracking a surge in cybercriminal activity that ...