SHub macOS infostealer variant spoofs Apple security updates

A new variant of the 'SHub' macOS infostealer uses AppleScript to show a fake security update message and installs a backdoor ...
Microsoft

ClickFix campaign uses fake macOS utilities lures to deliver infostealers

Threat actors are targeting macOS users with fake utility fixes that trick them into running malicious Terminal commands.
TweakTown

Forza Horizon 6 files reportedly leaked on Steam 10 days before release

The entire 155 GB file repository of Forza Horizon 6 was uploaded to Steam by Playground Games, and now they're in damage ...
SecurityWeek

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Attackers are increasingly abusing Microsoft’s legacy MSHTA utility to silently deliver malware, stealers, and persistent ...
Techlicious

Google confirms Gmail security flaw that lets malware through

Google confirmed a flaw that lets hackers send malware through Google Drive with Gmail's own "Scanned by Gmail" safety label ...

New WhatsApp Flaws Could Affect Billions of Users After Meta Security Patch

Meta patched two WhatsApp flaws affecting iOS, Android, and Windows users, including bugs tied to risky files, links, and ...

Hackers used faked Apple & Yahoo infrastructure to hide malware

Hackers spent months hiding malware behind fake Apple-themed internet infrastructure and similarly bogus Windows pop-ups to ...

WhatsApp users: 'Update right away' as new bugs could inject 'dangerous' files in your devices

WhatsApp has released security updates addressing two critical vulnerabilities. One flaw could allow malicious media loading via AI-generated messages, while another on Windows could disguise harmful ...
Microsoft

When prompts become shells: RCE vulnerabilities in AI agent frameworks

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...
The Hacker News

Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak

Critical out-of-bounds read in Ollama before 0.17.1 leaks process memory including API keys from over 300000 servers via ...
Tech Times

Karpathy’s Autoresearch Loop Is Spreading Fast: Shopify’s 53% Speed Claim Still Unmerged, Flagged as Overfit

In early March 2026, Andrej Karpathy — co-founder of OpenAI and former Director of AI at Tesla — released a three-file GitHub ...
InfoWorld

Malicious Hugging Face model masquerading as OpenAI release hits 244K downloads

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...