Malicious VSCode extensions on Microsoft's registry drop infostealers

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing ...
CNET

Is That Link Legit? How to Spot and Avoid Scams in Your Inbox

"Smartphones do their best to block scam links, so attackers use tricks to make their links clickable," said Joshua McKenty, CEO of Polyguard.ai, a cybersecurity company that helps businesses protect ...

How to Spot a ‘Sleeper’ Browser Extension That’s Actually Malware

Malicious extensions occasionally find their way into the Chrome Web Store (and similar libraries in other browsers) by posing as legitimate add-ons. Some of them only morph into malware after gaining ...
The Hacker News

Android Malware FvncBot, SeedSnatcher, and ClayRat Gain Stronger Data Theft Features

Researchers detail FvncBot, SeedSnatcher, and a stronger ClayRat that widen Android data theft and device control tactics.

Russia bans Roblox over claims it spreads extremist and LGBTQ "propaganda"

Russia has banned Roblox in the country over fears that it is rife with inappropriate content that can "negatively impact the spiritual and moral development of ...
The Hacker News

Malicious Rust Crate Delivers OS-Specific Malware to Web3 Developer Systems

Researchers found a fake Ethereum helper package on crates.io that secretly downloaded OS-specific payloads and executed them on developer machines.