Axios npm hack used fake Teams error fix to hijack maintainer account

The maintainers of the popular Axios HTTP client have published a detailed post-mortem describing how one of its developers was targeted by a social engineering campaign believed to have been ...
Windows Report

Anthropic Claude Code Leak Triggers Malware Campaign on GitHub

Claude Code leak is now used to spread malware via fake GitHub repos, delivering infostealers and backdoor tools.

Device code phishing attacks surge 37x as new kits spread online

Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more than 37 times this year.
ComputerUser on MSN

This fake Claude Code malware could hit anyone who isn’t careful

AI developer tools are gaining popularity fast, which makes them prime targets for hackers. Researchers at Kaspersky ...

GitHub developers targeted by fake VS Code alerts spreading malware

The 'Discussions' section is being manipulated into delivering malware to software devs.