The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...
CSO Online

ClickFix techniques evolve in new infostealer campaigns

Recent social engineering schemes involving WordPress and Microsoft’s Windows Terminal show that this relatively basic tactic is a growing threat.

AI-generated Slopoly malware used in Interlock ransomware attack

A new malware strain dubbed Slopoly, likely created using generative AI tools, allowed a threat actor to remain on a compromised server for more than a week and steal data in an Interlock ransomware ...
The Hacker News

Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware Attacks

AI-generated Slopoly malware used by Hive0163 in 2026 attacks maintained access for over a week, highlighting how AI ...
How-To Geek on MSN

Node.js is changing its release cycle, just as Chrome switches to faster upgrades

Slow and steady.

Bad CAPTCHA in the wild tricks Mac users into installing malware through Terminal

Hackers have a new tool called ClickFix. The new attack vector combines fake human-verification prompts with malware, trying to trick users into running Terminal commands that bypass macOS security.
TMCnet

ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware Delivery

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be the first documented case of attackers abusing the Deno JavaScript runtime ...

Amazon's Zoox to test robotaxis in Phoenix, open Valley 'command hub'

Zoox joins Waymo and other competitors eyeing the Valley's growing autonomous vehicle market. The Amazon subsidiary has ...
9to5google

Android Auto users hit with ‘Voice commands aren’t available right now’ bug

A bug with Android Auto is causing users to be unable to use voice commands, with a prominent “voice commands aren’t available right now” notice appearing. Where it’s not uncommon for voice commands ...
InfoWorld

Open source maintainers are being targeted by AI agent as part of ‘reputation farming’

AI agents able to submit huge numbers of pull requests (PRs) to open-source project maintainers risk creating the conditions for future supply chain attacks targeting important software projects, ...