Security Boulevard

This fake Windows support website delivers password-stealing malware

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.
TweakTown

HWMonitor and CPU-Z download links were infected with malware for 6 hours before devs caught it

The devs were quick to remove the malware, as millions of users rely on these to track temperatures, voltages, fan speeds, ...
The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.
CNET on MSN

Scammers Want Our Data, Yet CNET Finds Many of Us Aren't Protecting Our Devices

Scammers Want Our Data, Yet CNET Finds Many of Us Aren't Protecting Our Devices ...

New ‘LucidRook’ malware used in targeted attacks on NGOs, universities

A new Lua-based malware, called LucidRook, is being used in spear-phishing campaigns targeting non-governmental organizations ...
The Hacker News

Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels

Russian CTRL toolkit spread via malicious LNK files in February 2026, routing C2 through FRP-tunneled RDP to evade detection.

CPUID site hijacked to serve malware instead of HWMonitor downloads

Analysis shared by vx-underground says the malicious installer appears to have targeted 64-bit HWMonitor users and included a ...

Your Windows 11 PC is slower than it should be. Here’s what to check

Everything running on your PC uses system resources, so why tax it with unnecessary processes and programs you no longer need ...
InfoWorld

Anthropic employee error exposes Claude Code source

A version of the AI coding tool in Anthropic's npm registry included a source map file, which leads to the full proprietary ...

New CrystalRAT malware adds RAT, stealer and prankware features

A new malware-as-a-service called CrystalRAT is being promoted on Telegram, offering remote access, data theft, keylogging, ...
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...
Guru3D

CPUID Offline After Reports of Malware in CPU-Z and HWMonitor Downloads

A potential software supply-chain incident is unfolding around CPUID, the developer behind CPU-Z and HWMonitor, after multiple reports claimed that official download links were serving malware rather ...