Security Boulevard

That “job brief” on Google Forms could infect your device

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain. The attack typically begins when a victim downloads a business-themed ZIP ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
The Hacker News

ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...
Redmondmag.com

Microsoft Brings Production Ready AI Agents at GTC

Microsoft used Nvidia's GTC conference this week to roll out a series of enterprise AI announcements spanning agent infrastructure, real-time voice interactions and next-generation GPU deployments.
腾讯网

ClickFix攻击活动通过虚假AI工具安装包传播MacSync信息窃取木马

研究人员发现三种不同的ClickFix攻击活动,正在将其作为传播载体来部署一款名为MacSync的macOS信息窃取木马。 Sophos安全研究人员Jagadeesh Chandraiah、Tonmoy Jitu、Dmitry Samosseiko和Matt Wixey表示:"与传统的基于漏洞利用的攻击不同,这种方法完全依赖于用户交互——通常是复制和执行命令的形式——这使得它对那些可能不了解运行未 ...