Fake Claude Code Repos on GitHub Are Spreading Malware
Anthropic's accidental leak of the Claude Code source code on March 31 set off a frenzy of downloads across GitHub. Developers, researchers, and the simply curious all rushed to grab the exposed files. Criminals saw that rush and moved fast. Within 24 hours, fake GitHub repositories carrying Claude Code malware were live — and actively appearing in Google search results
NoVoice Malware Hits 2.3 Million Android Devices via Google Play
A new Android rootkit campaign called NoVoice malware has been discovered hiding inside more than 50 apps on Google Play. The apps collected at least 2.3 million downloads before being removed. Researchers warn that millions of devices may still be compromised. What Is NoVoice Malware? NoVoice malware is a rootkit. That means it burrows into the deepest layers of a
CrystalX RAT: The Malware That Spies, Steals, and Trolls You
A new piece of Windows malware is turning heads in the cybersecurity world. CrystalX RAT is a remote access Trojan discovered in early 2026. It combines spyware, credential theft, and cryptocurrency hijacking with "prankware" features. These features flip your screen, scramble your mouse buttons, and lock your keyboard, all while quietly draining your data in the background. What Is CrystalX
CareCloud Data Breach Exposes Patient Health Records
Healthcare IT firm CareCloud has confirmed a data breach that gave attackers unauthorized access to one of its electronic health record systems for roughly eight hours. The New Jersey-based company disclosed the incident to the U.S. Securities and Exchange Commission on March 24, more than a week after the intrusion on March 16. Patient health records were stored in the
Ajax Data Breach Exposes Fans and Ticket Data
Dutch football club AFC Ajax Amsterdam has confirmed an Ajax data breach that exposed fan records and left tens of thousands of season tickets vulnerable to theft. The club learned about the security failure not from its own systems, but from a journalist tipped off by the hacker. The breach has raised serious questions about how sports organizations handle fan
AnimePlay Shutdown: 5 Million Users, 60TB of Stolen Anime
The AnimePlay shutdown is one of the most significant anti-piracy actions to hit the anime streaming world in years. A global entertainment coalition dismantled the app on March 27, 2026, taking offline a platform that had quietly grown into one of the largest illegal anime services in the Asia-Pacific region, with over five million registered users and tens of terabytes
Bubble AI Exploited in Microsoft Credential Phishing
Phishers have found a new way to slip past email security filters, and it involves a tool most people associate with building legitimate apps. Attackers are now abusing Bubble AI, a no-code app-building platform, to create and host malicious web apps designed to steal Microsoft account credentials. The approach is convincing, hard to detect, and security researchers warn it is
Torg Grabber Malware Targets 728 Crypto Wallets
A newly discovered infostealer has sent shockwaves through the cybersecurity community. Torg Grabber malware, identified by researchers at Gen Digital, targets 728 cryptocurrency wallet browser extensions, along with hundreds of password managers, two-factor authentication tools, and note-taking apps. It spreads through social engineering, moves fast, and goes after virtually every digital asset a victim might have. This is not a
Firefox Built-In VPN: What It Does and What It Doesn’t
Mozilla has added a free Firefox built-in VPN to its browser with the release of Firefox 149. The feature arrived on March 24, 2026, and gives users up to 50GB of protected browsing data each month at no cost. It requires no extra downloads, no extensions, and no third-party subscriptions. For casual users who want basic privacy protection without setting
Dutch Government Cyberattack Hits Finance Ministry
The Dutch government is under fire again after a cyberattack breached the Ministry of Finance's internal systems. The Ministry of Finance confirmed on March 24 that unauthorized access to its internal systems was detected on March 19. The breach reached systems described as primary processes within the ministry's policy department, though the full extent of the intrusion remains unknown. The
