The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

Anthropic just shipped an OpenClaw killer called Claude Code Channels, letting you message it over Telegram and Discord

The consensus among early adopters is that Anthropic has successfully internalized the most desirable features of the open-source movement—multi-channel support and long-term memory ...
CSO Online

ClickFix techniques evolve in new infostealer campaigns

Recent social engineering schemes involving WordPress and Microsoft’s Windows Terminal show that this relatively basic tactic is a growing threat.
Hosted on MSN

4 Microsoft Copilot Linux alternatives that are just as good (if not better)

I tested 20+ Linux desktop AI companions—several match or beat Copilot depending on use case. Newelle, LM Studio, PyGPT, and Jan.ai stand out for supporting local models, offline use, and more ...

AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.
The Daily Star

Swiss firm to run Pangaon container terminal for 22 years

The government has finalised the process to appoint Switzerland-based logistics firm Medlog SA to manage and operate the Pangaon Inland Container Terminal in Keraniganj for 22 years. An agreement is ...
WinBuzzer

GitHub: Glassworm Hides Malware in Invisible Unicode Across 151+ Repos

The Glassworm campaign has compromised over 151 GitHub repositories and npm packages using invisible Unicode payloads that ...