Tag: infostealer

Anthropic unintentionally exposed the source code for its Claude Code tool, prompting a flood of GitHub reposts. Security researchers discovered that many of the copies include hidden infostealer malware, turning a simple code leak into a broader threat. The company has issued copyright takedown notices, trimming the number of repositories from over 8,000 to under 100. The episode follows earlier attempts to lure users with fake installation guides that also delivered malicious payloads. Leggi di più

Kaspersky has identified a malvertising campaign that targets developers searching for AI coding assistants such as Claude Code and OpenClaw. The campaign displays malicious ads that lead to counterfeit download pages. When users copy and paste the provided code into Windows Command Prompt or macOS Terminal, they inadvertently install infostealer malware—Amatera on Windows and AMOS on macOS. The malware harvests source code, corporate data, credentials, and cryptocurrency wallet information, posing a serious risk to both hobbyist and professional developers. Leggi di più

Security researchers at Proofpoint have identified a new variant of the open‑source infostealer known as Stealerium that automatically captures webcam photos and browser screenshots when a victim visits pornographic sites. The malware, distributed freely on GitHub by a developer calling themselves witchfindertr, steals typical data such as passwords and crypto keys while also adding a humiliating sextortion feature. Proofpoint observed the tool being used in phishing campaigns targeting hospitality, education and finance sectors. The discovery highlights a shift toward low‑profile, individual‑targeted extortion by cybercriminals. Leggi di più