AI-Generated npm Malware Leaks Hacker’s Private GitHub Token

A newly discovered malicious npm package is drawing attention across the cybersecurity community after inadvertently exposing its own operator’s private GitHub token. Identified by OX Security researchers, the package, named mouse5212-super-formatter, …

·

AI, cyber security, Cyber Security News, GitHub, Malware

¶¶¶¶¶

Hackers Host JS Malware on GHOSTYNETWORKS and OMEGATECH

Hackers are abusing two bulletproof hosting providers, GHOSTYNETWORKS and OMEGATECH, to run a global JavaScript (JS) malware infrastructure that powers large‑scale malspam and business email compromise activity. In March 2026, multiple malspam waves de…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

FortiClient Code Execution Flaw Exploited to Deploy EKZ Malware

Fortinet customers are facing a new wave of attacks after a critical flaw in FortiClient Endpoint Management Server (EMS) was exploited to push a fake Fortinet patch that secretly installs credential‑stealing malware. The vulnerability, tracked as CVE‑…

·

CVE/vulnerability, cyber security, Cyber Security News, Malware, vulnerability

¶¶¶¶¶

Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms

Iran’s Nimbus Manticore hackers used trojanized Zoom installers to deploy malware against US firms during a wider IRGC linked cyber campaign.

·

CPR, Cyber Attack, Cyber-Attacks, cybersecurity, Iran, Malware, MiniFast, Nimbus Manticore, SCAM, Security, UNC1549

¶¶¶¶¶

BTMOB Malware Allows Cybercriminals to Remotely Hijack Android Phones

A newly observed Android malware strain, known as BTMOB, is raising concerns among cybersecurity researchers due to its powerful remote access capabilities and ease of deployment. Initially identified in early 2025, BTMOB has evolved into a full-featur…

·

Android, cyber security, Cyber Security News, Malware

¶¶¶¶¶

Trojanized Gemini and Claude Installers Target Developers Via SEO Poisoning

Cybercriminals are using SEO poisoning and fake Gemini and Claude installer sites to infect developers with fileless malware and steal data.

·

Claude, Cyber Attack, cybersecurity, Developers, EclecticIQ, Gemini, Malware, Scams and Fraud, Security, SEO Poisoning, TROJAN

¶¶¶¶¶

Ghost CMS Vulnerability Exploited to Infect 700 Sites With ClickFix Malware

Hackers are actively exploiting a critical SQL injection vulnerability in Ghost CMS (CVE-2026-26980) to compromise websites and distribute ClickFix malware through large-scale page-poisoning attacks. The vulnerability allows attackers to extract sensit…

·

cyber security, Cyber Security News, Malware, vulnerability

¶¶¶¶¶

FBI Chief Kash Patel’s Clothing Store Hacked in ClickFix Infostealer Attack

Hackers compromised FBI Chief Kash Patel’s clothing store in a ClickFix attack that tricked macOS users into installing infostealer malware.

·

ClickFix, Cloudflare, Cyber Attack, Cyber-Attacks, cybersecurity, FBI, Hacking News, Infostealer, Kash Patel, Malware, Security

¶¶¶¶¶

InvisibleFerret Malware Uses .pyd and .so Files to Evade Script Detection

A North Korea-linked threat group, Void Dokkaebi, also known as Famous Chollima, has significantly upgraded its malware delivery techniques by converting its Python-based InvisibleFerret malware into compiled binary modules. InvisibleFerret was previou…

·

cyber security, Cyber Security News, Malware

¶¶¶¶¶

Netherlands Busts Bulletproof Hosting Network Linked to Disinformation and Cybercrime

Dutch authorities arrested two suspects after dismantling a bulletproof hosting network linked to cybercrime, disinfo, and Russian sanctions evasion.

·

Bulletproof, Cyber Crime, cybersecurity, Disinformation, europe, Malware, Netherlands, Russia

¶¶¶¶¶

1010.cx

1010.cx

Category: Malware