Termite ransomware breaches linked to ClickFix CastleRAT attacks

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.
PCMag

Phony Claude Code Install Guides Trick Vibe Coders Into Installing Malware

Dubbed InstallFix by Push Security, the scheme inserts instructions to download malware during the Claude Code install process on cloned websites.
The Hacker News

Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer

Microsoft reveals ClickFix campaign abusing Windows Terminal to deliver Lumma Stealer and steal browser credentials.

QuickLens Chrome extension steals crypto, shows ClickFix attack

A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
PC Magazine

I Won't Use AI Web Browsers Until They Fix These 3 Fatal Flaws

All the AI browsers I've tried integrate AI assistants, which are essentially chatbots you can open at any time and on any web page with a click. Most can also automate tasks, generate media, and ...
Windows Central

Someone got Windows 98 running on a smart toaster and the internet is loving it

A developer managed to get Windows 98 running inside a smart toaster using a tool called Toast.exe, and the internet is having a field day with the results. When you purchase through links on our site ...