The Hacker News

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...
PC Magazine

The Best Cloud Storage and File-Sharing Services for 2026

File syncing and storage services, also known as cloud storage services, offer major convenience. They let you back up and access your data—documents, photos, video, and other file types—on any ...
Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
Security Boulevard

Axios Front-End Library npm Supply Chain Poisoning Alert

Overview On March 31, NSFOCUS CERT detected that the npm repository of the HTTP client library Axios was poisoned by the supply chain. The attacker bypassed the normal GitHub Actions CI/CD pipeline of ...
PC Magazine

The Best Encryption Software for 2026

Just because you have antivirus software installed on your PC doesn't mean a zero-day Trojan can't steal your personal data. The top encryption software keeps you safe from malware (and the NSA). When ...
GIGAZINE

'Agent Zero' allows you to easily and freely use an AI agent to automatically operate ...

An open source personal AI agent framework called ' Agent Zero ' has been released, which uses the OS as a tool to accomplish tasks by gathering information, executing code, and collaborating with ...

"CanisterWorm" supply chain malware attacks npm

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, worm-like malware across dozens of packages, security firms say. Named CanisterWorm ...