Fake AI Chrome extensions with 300K users steal credentials, emails

A set of 30 malicious Chrome extensions that have been installed by more than 300,000 users are masquerading as AI assistants ...
The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...

Scammers Are Sending Fake Invites With Malware

Sorry—you weren't actually invited to a party.

Microsoft: New Windows LNK spoofing issues aren't vulnerabilities

Today, at Wild West Hackin' Fest, security researcher Wietze Beukema disclosed multiple vulnerabilities in Windows LK ...

North Korean hackers use AI-generated video to deliver malware for macOS and Windows

UNC1069 uses a mix of Business Telegram Compromise, deepfakes, and malware.
CyberGuy

Android malware hidden in fake antivirus app

Hackers abused Hugging Face to spread Android malware through a fake antivirus app. Here is how it works and how to protect your phone.
PCMag on MSN

Fake Version of Popular Archiver Site Is Distributing Malware, Taking Over PCs

Watch what you type. The real 7-Zip uses a .org domain, but a .com version is distributing a Trojan, according to antivirus provider Malwarebytes.