Security news aggregator

Latest coverage for Malicious Code

Stay informed on the latest threats with news and updates on Malicious Code. Protect your information from harmful software and cyber attacks.

228 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Malicious Code is a category of software designed to harm, exploit, or otherwise perform unauthorized actions on a computer system. Within the realm of information security, it encompasses a variety of software threats including viruses, worms, trojan horses, ransomware, spyware, adware, and other unwanted harmful programs.

These deliberate software threats are created to disrupt operations, gather sensitive information, gain unauthorized access to system resources, and compromise the integrity, confidentiality, and availability of data. Malicious code often exploits vulnerabilities within software and can spread across networks, making it a critical consideration in cybersecurity defenses. Effective measures against malicious code include the implementation of antivirus and antimalware solutions, regular software updates, user education, and adherence to robust security policies and procedures.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 228 Filtered view

A large-scale npm supply chain attack compromised over 90 versions of @redhat-cloud-services packages, silently infecting CI/CD environments and developer systems. The malicious code steals credentials from GitHub, cloud platforms, and local machines, then spreads like a worm by republishing trusted packages. Discover how the attack works, what data is at risk, and the steps you can take to protect your organization. The post Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign appeared first on Microsoft Security Blog.

More from Microsoft Security Research 3 Jun 2026, 4:45 p.m. Incident · 4 stories Cloud Compromise Credentials Github Linux Malicious Code Microsoft Node.js Red Hat Supply Chain Theft Worm

A supply chain attack targeting the Laravel Lang localization packages has exposed developers to a sophisticated credential-stealing malware campaign after attackers abused GitHub version tags to distribute malicious code through Composer packages. [...]

More from Bleeping Computer 24 May 2026, 8:48 a.m. Incident · 3 stories Credentials Exposure Github Malicious Code Malware Supply Chain Theft

Microsoft on Tuesday said it disrupted a malware-signing-as-a-service (MSaaS) operation that weaponized the company's Artifact Signing system to deliver malicious code and conduct ransomware and other attacks, compromising thousands of machines and networks across the world

More from The Hacker News 21 May 2026, 2:36 a.m. Incident · 7 stories Compromise Malicious Code Malware Microsoft Ransomware Threat Actor
Microsoft Security Research 2 weeks, 1 day ago

Exposing Fox Tempest: A malware-signing service operation

Fox Tempest is a financially motivated threat actor operating a malware‑signing‑as‑a‑service (MSaaS) used by other cybercriminals, including Vanilla Tempest and Storm groups, to more effectively distribute malicious code, including ransomware. The post Exposing Fox Tempest: A malware-signing service operation appeared first on Microsoft Security Blog.

More from Microsoft Security Research 20 May 2026, 3:07 a.m. Incident · 7 stories Malicious Code Malware Microsoft Ransomware Threat Actor

In yet another software supply chain attack, threat actors have compromised the popular GitHub Actions workflow, actions-cool/issues-helper, to run malicious code that harvests sensitive credentials and exfiltrates them to an attacker-controlled server

More from The Hacker News 19 May 2026, 5:28 p.m. Incident · 4 stories Compromise Credentials Github Malicious Code Supply Chain Theft Threat Actor

Supply chain attackers are not only trying to slip malicious code into trusted software. They are trying to steal the access that makes trusted software possible. Recently, three separate campaigns hit npm, PyPI, and Docker Hub in a 48-hour window, and all three targeted secrets from developer environments and CI/CD pipelines, including API keys, cloud credentials, SSH keys, and tokens. This is

More from The Hacker News 18 May 2026, 11:23 p.m. API Cloud Credentials Docker Malicious Code Node.js SSH Supply Chain Theft Virtualisation
The Hacker News 4 weeks, 2 days ago

2026: The Year of AI-Assisted Attacks

On December 4, 2025, a 17-year-old was arrested in Osaka under Japan’s Unauthorized Access Prohibition Act. The young man had run malicious code to extract the personal data of over 7 million users of Kaikatsu Club, Japan's largest internet cafe chain. When asked, the young man shared his motivation for the hack: he wanted to buy Pokémon cards

More from The Hacker News 4 May 2026, 11:58 p.m. Artificial Intelligence Hacking Japan Malicious Code PII

Two weeks ago, a suspected North Korean threat actor slipped malicious code into a package within Axios, a widely used JavaScript library. The immediate concern was the blast radius: roughly 100 million weekly downloads spanning enterprises, startups, and government systems. But beyond the sheer scale, the attack’s speed was just as worrisome – a stark […] The post Why the Axios attack proves AI is mandatory for supply chain security appeared first on CyberScoop.

More from Cyber Scoop 21 Apr 2026, 1:17 a.m. Incident · 2 stories Artificial Intelligence Government JavaScript Library Malicious Code North Korea Startup Supply Chain Threat Actor Widely Used

When a Magecart payload hides inside the EXIF data of a dynamically loaded third-party favicon, no repository scanner will catch it – because the malicious code never actually touches your repo. As teams adopt Claude Code Security for static analysis, this is the exact technical boundary where AI code scanning stops and client-side runtime execution begins

More from The Hacker News 19 Mar 2026, 12:58 a.m. Adoption Artificial Intelligence Malicious Code