Hackers Don't Need Malware Anymore And That Changes Everything

CrowdStrike's 2026 report finds 82% of attacks are malware-free, breakout times average 29 minutes, and adversaries exploit trust in identities, cloud, and supply chains.

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

Glassworm Malware Campaign Uses Invisible Code To Infect Hundreds Of GitHub Repos

The GlassWorm malware made news when it pivoted from exclusively targeting Windows users to also targeting Mac OS users in January, and in the time since, the malware campaign has spread across at ...
Dark Reading

Mitigate Malware Risks: Strategies for Securing Cloud Storage

The cloud's ability to store and seamlessly share vast amounts of information makes it integral to modern-day business operations. However, threat actors frequently target cloud storage accounts with ...
SecurityWeek

‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload

BlackSanta is a malware module that kills EDR and AV at the kernel level prior to unleashing the malware’s final purpose.

New 'Zombie ZIP' technique lets malware slip past security tools

A new technique dubbed "Zombie ZIP" helps conceal payloads in compressed files specially created to avoid detection from security solutions such as antivirus and endpoint detection and response (EDR) ...
Kim Komando

The malware your antivirus can’t see and the AI making 560,000 new viruses every day

Kim Komando reveals why AI-generated malware is beating free antivirus software, the dark web marketplace selling viruses for $100/month and the symptoms that mean your computer is already infected. ⚡ ...
Fox News

Malware exposes 3.9 billion passwords in huge cybersecurity threat

We saw a rise in infostealer malware in 2024, with hackers using it to steal credentials, cryptocurrency and other personal data from millions of users. If you recall, I reported countless incidents ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
Infosecurity-magazine.com

Don’t Act in Isolation: Transforming Malware Intelligence in the AI Era

As cybercriminals use Artificial Intelligence (AI) to boost the scale and sophistication of malware attacks, Justin Grosfelt, Manager of the Reversing, Emulation, and Testing (RET) Team, Insikt Group, ...
9to5Mac

Security Bite: Mac users are finally taking malware seriously, per new report

9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to ...
SecurityWeek

Iranian Hackers Likely Used Malware-Stolen Credentials in Stryker Breach

New evidence suggests the recent attack targeting Stryker involved compromised credentials obtained via infostealer malware.