PCMag

Phony Claude Code Install Guides Trick Vibe Coders Into Installing Malware

Dubbed InstallFix by Push Security, the scheme inserts instructions to download malware during the Claude Code install process on cloned websites.
Make Tech Easier

I Analyzed the Latest Windows ‘MaaS’ Scams — Here is What You Need to Know

Cybercriminals are now able to rent Malware-as-a-service and legally install malware on your PC. Learn how to identify these ...
The Hacker News

APT28-Linked Campaign Deploys BadPaw Loader and MeowMeow Backdoor in Ukraine

Researchers uncover APT28-linked phishing attacks against Ukrainian targets deploying BadPaw loader and MeowMeow backdoor for ...
Infosecurity-magazine.com

Android Malware Hijacks Google Gemini to Stay Hidden

ESET researchers have identified an Android malware implant that uses generative AI (GenAI) for persistence purposes. This malicious implant is an advanced version of VNCSpy, a piece of malware that ...
Bleeping Computer

PromptSpy is the first known Android malware to use generative AI at runtime

Researchers have discovered the first known Android malware to use generative AI in its execution flow, using Google’s Gemini model to adapt its persistence across different devices. In a report today ...
Computer Weekly

PromptSpy Android malware may exploit Gemini AI

An Android-specific malware targeting mobile device takeover appears to use generative AI (GenAI) services in its execution flows to maintain persistence on the victim’s smartphone, researchers at ...
WeLiveSecurity

PromptSpy ushers in the era of Android threats using GenAI

ESET researchers uncovered the first known case of Android malware abusing generative AI for context-aware user interface manipulation. While machine learning has been used to similar ends already – ...
CSOonline

Keenadu: Android malware that comes preinstalled and can’t be removed by users

Keenadu infiltrated devices by posing as legitimate system components, prompting calls for tighter controls on firmware integrity across manufacturing and supply‑chain pipelines. There’s too little a ...
TechSpot

Researchers uncover firmware-level backdoor installed on several Android tablet brands

Facepalm: Keenadu is a firmware-level backdoor that has infected thousands of devices worldwide. Kaspersky analysts discovered the threat while investigating Triada, a trojan pre-installed on ...
Android Authority

Multiple brands of Android tablets shipped with built-in malware (Updated: Google statement)

Researchers found a firmware-level Android backdoor called Keenadu preinstalled on certain tablets before sale. The malware injects into Android’s Zygote process, giving attackers broad control over ...
Dark Reading

Supply Chain Attack Embeds Malware in Android Devices

Researchers have spotted new malware embedded in the firmware of Android devices from multiple vendors that injects itself into every app on infected systems, giving attackers virtually unrestricted ...
Fox News

Android malware hidden in fake antivirus app

If you use an Android phone, this deserves your attention. Cybersecurity researchers warn that hackers are using Hugging Face, a popular platform for sharing artificial intelligence (AI) tools, to ...