Security News This Week: Hackers Are Posting the Claude Code Leak With Bonus Malware

Plus: The FBI says a recent hack of its wiretap tools poses a national security risk, attackers stole Cisco source code as part of an ongoing supply chain hacking spree, and more.

Hackers use fake CAPTCHA schemes to put info-stealing viruses on your devices; here’s how to stay safe

If you've ever had to log into an online account, you're likely familiar with a CAPTCHA ID verification box.
Android

Hackers Turned Anthropic's Claude Code Leak into a Malware Lure

Hackers are exploiting a recent accidental source code leak from Anthropic to spread Vidar infostealer malware via fake GitHub repositories. These malicious sites have even managed to appear in top ...
Forbes

2FA Code Attacks Surge As Russian Hackers Target Microsoft Users

Microsoft 365 is under attack, China and Russia afflited hackers suspected. Updated December 23 with advice from a mobile security solutions expert regarding the Russian device code attacks targeting ...
CNBC

'Quishing' scams dupe millions of Americans as cybercriminals turn the QR code bad

To join the CNBC Technology Executive Council, go to cnbccouncils.com/tec Almost three-quarters of Americans (73%) scan QR codes without verification, and more than ...
ABC 7 Chicago

'Remote Invite Scam': Hackers using calendar invites to access computers, steal money, information

CHICAGO (WLS) -- Security experts say a new scam is spreading fast, and it looks like something many people get all the time: A simple calendar invite. However, clicking on the link can give scammers ...
PC Magazine

Hacker Scams Noobs and Game Cheaters With Booby-Trapped Malware Builder

Hacker Scams Noobs and Game Cheaters With Booby-Trapped Malware Builder Over a 100 GitHub pages devoted to malware creation and game cheats hosted a tool that secretly deployed malicious computer code ...

Hackers are abusing unpatched Windows security flaws to hack into organizations

A security researcher published details of three security vulnerabilities in Windows Defender, and the code used to exploit them. Now, hackers are taking advantage of the vulnerabilities in real life ...

Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data

Application security company Checkmarx has confirmed that the LAPSUS$ threat group leaked data stolen from its private GitHub ...