Morning Overview on MSN

Hackers poisoned the PyTorch Lightning AI package and it started stealing credentials the moment you imported it

A single line of Python code was all it took. Developers who ran import lightning after installing versions 2.6.2 or 2.6.3 of ...

New Global Scam Uses Fake Meeting Links to Run PowerShell Malware

BlueNoroff hackers used fake Zoom calls, ClickFix prompts, and fileless PowerShell malware to steal credentials from Web3 and ...
CNET

Malware Is Scary. Here's CNET's Guide to Cleaning an Infected Laptop

Every data-stealing virus requires a unique approach, but these are the essential first steps for reclaiming an infected device. Dashia is the consumer insights editor for CNET. She specializes in ...
Bleeping Computer

New CrystalRAT malware adds RAT, stealer and prankware features

A new malware-as-a-service called CrystalRAT is being promoted on Telegram, offering remote access, data theft, keylogging, and clipboard hijacking capabilities. The malware emerged in January with a ...
Mashable

Newly discovered malware 'pranks' its victims – just in time for April Fools' Day

CrystalX RAT is a new malware with the ability to steal data and prank its victims. Credit: urbazon / Getty Images Cybersecurity researchers have discovered a brand new malware threat called CrystalX ...
PC World

AI malware threatens Windows 11 security. Traditional antivirus can’t keep up

PCWorld reports that new AI-powered malware like DeepLoad threatens Windows 11 security by using fileless attacks that bypass traditional antivirus software. This fileless malware tricks users into ...
Mashable

Everything you need to know about the malware stealing data from Mac users

Mac users have a new malware threat to be on the watch out for. According to a new report by Malwarebytes, Infiniti Stealer is a new malware attack targeting Mac users that utilizes social engineering ...
Inc

Malware in an Open-Source Project Could Have Infected Thousands. The Twist? It Was Certified by Delve

The compromise happened despite the fact that LiteLLM boasts two major compliance certifications. The provider? Embattled startup Delve. “Brought to you by Delve,” one Redditor snarked in the ...
CSOonline

New ‘StoatWaffle’ malware auto‑executes attacks on developers

The newly observed malware abuses VS Code’s “runOn:folderOpen” feature to execute automatically from trusted projects, enabling near-frictionless compromise. A newly disclosed malware strain dubbed ...
BGR

FBI Warns Of 7 Steam Games Containing Hidden Malware

After the FBI recently warned about replacing certain Wi-Fi routers, the agency is now turning to gamers for help in the ongoing fight against malware. The federal agency has issued a public statement ...
Scientific American

Open-source software has an invisible vulnerability. Hackers have found it

The danger in the code came from characters that are invisible to the human eye. In early March researchers at several security firms examined what looked like empty space and found hidden Unicode ...
Kotaku

Gacha Game Apologizes For Giving Players Malware With Some Free Loot Boxes

The team behind Duet Night Abyss, a free-to-play gacha RPG from developer Pan Studio and publisher Hero Games, has apologised for a “cybersecurity incident” that occurred last night, on March 18, ...