Engadget

Hackers injected malicious code into several Chrome extensions in recent attack

Hackers were reportedly able to modify several Chrome extensions with malicious code this month after gaining access to admin accounts through a phishing campaign. The cybersecurity company Cyberhaven ...
Dark Reading

GenAI Writes Malicious Code to Spread AsyncRAT

Threat actors have used generative artificial intelligence (GenAI) to write malicious code in the wild to spread an open source remote access Trojan (RAT). It's one of the first observed examples of ...
Ars Technica

Hundreds of code libraries posted to NPM try to install malware on dev machines

An ongoing attack is uploading hundreds of malicious packages to the open source node package manager (NPM) repository in an attempt to infect the devices of developers who rely on code libraries ...
Hosted on MSN

Malicious VS Code extensions resurface, stealing GitHub credentials and crypto wallets

Developers will have to contend with a dormant turned active malicious code on Visual Studio Code (VS Code) extensions, which is believed to have compromised thousands of users by stealing credentials ...
Hosted on MSN

Hackers are using malicious code to take over legitimate banking apps and your phone — don't fall for this

Hackers are taking legitimate banking apps and decompiling them in order to add malicious code, then spreading them through common threat schemes like phishing lures and fake look-a-like websites.
JD Supra

Threat actors increasingly introducing malicious code into open source packages

The risks associated with leveraging open source libraries, and the review needed, are increasing. In the first half of 2025, cybersecurity researchers observed a sharp rise in the incidence of ...
Ars Technica

Researchers cause GitLab AI developer assistant to turn safe code malicious

Marketers promote AI-assisted developer tools as workhorses that are essential for today’s software engineer. Developer platform GitLab, for instance, claims its Duo chatbot can “instantly generate a ...
Becker's Hospital Review

Not just a hospital problem: Malicious code tops cybersecurity threat list for government entities

Malicious code, like that which forms the backbone of ransomware viruses plaguing hospitals of late, is not just fear-inducing for healthcare administrators. According to cybersecurity records from ...
CSOonline

Attackers hide malicious code in Hugging Face AI model Pickle files

The popular Python Pickle serialization format, which is common for distributing AI models, offers ways for attackers to inject malicious code that will be executed on computers when loading models ...
SiliconANGLE

Bad code, malicious models and rogue agents: Cybersecurity researchers scramble to prevent AI exploits

When it comes to dealing with artificial intelligence, the cybersecurity industry has officially moved into overdrive. Vulnerabilities in coding tools, malicious injections into models used by some of ...
TechRepublic

Hackers Can Hide Malicious Code in Gemini’s Email Summaries

Hackers Can Hide Malicious Code in Gemini’s Email Summaries Your email has been sent Google’s Gemini chatbot is vulnerable to a prompt-injection exploit that could trick users into falling for ...