Fake VS Code alerts on GitHub spread malware to developers

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the ...

Fake Google security page can turn your browser into a spying tool

Security researchers say a phishing scam impersonates Google to install malware that steals 2FA codes, tracks location and ...
Bleeping Computer

Fake Claude Code install guides push infostealers in InstallFix attacks

Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users into running malicious commands under the pretext of installing legitimate ...
Dark Reading

'InstallFix' Attacks Spread Fake Claude Code Sites

A new variation of the ClickFix technique is capitalizing on the popularity of Anthropic's Claude Code and other AI coding tools. Researchers at Push Security discovered the threat campaign, which ...