The Latest

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts

Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts

New WordPress Malware Uses Steam Profile Comments to Hide C2 Instructions

Halo Security Honored with 2026 MSP Today Product of the Year Award

Deeba Ahmed

1897 posts

Deeba is a veteran cybersecurity reporter at Hackread.com with over a decade of experience covering cybercrime, vulnerabilities, and security events. Her expertise and in-depth analysis make her a key contributor to the platform’s trusted coverage.

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Read More

3 minute read

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Fake ChatGPT desktop app ads pushed password-stealing malware by abusing trusted AI links, hiding from scanners, and tricking users into downloads.

June 2, 2026

Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts

Read More

2 minute read

Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts

Hackers abused Meta’s AI support bot to hijack major Instagram accounts, bypassing security checks as videos showed the flaw before Meta fixed the issue.

June 2, 2026

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

Read More

3 minute read

Security

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

pretalx XSS flaw lets attackers hijack conference organizer accounts, steal sessions, auto-accept talks, and demote admins. Patched in v2026.1.0.

June 1, 2026

Fake Purchase Order Emails Spread Fileless PureLogs Malware via RAR Archives

Read More

4 minute read

Fake Purchase Order Emails Spread Fileless PureLogs Malware via RAR Archives

Hackers are using fake purchase order emails and process hollowing to deploy fileless PureLogs malware to steal Windows users' browser, crypto, and Discord data.

June 1, 2026

27,000-Download Codex UI Tool Secretly Stole OpenAI Refresh Tokens

Read More

2 minute read

27,000-Download Codex UI Tool Secretly Stole OpenAI Refresh Tokens

A malicious Codex UI npm package with 27,000 weekly downloads was caught exfiltrating OpenAI refresh tokens, exposing developers to account takeover risks.

May 31, 2026

Fake Anthropic Sites Deliver Fileless Infostealer to Claude Code Users

Read More

2 minute read

Fake Anthropic Sites Deliver Fileless Infostealer to Claude Code Users

Fake Anthropic websites are being used to target Claude Code users with a fileless infostealer campaign that steals browser credentials and evades detection.

May 30, 2026

Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms

Read More

2 minute read

Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms

Iran’s Nimbus Manticore hackers used trojanized Zoom installers to deploy malware against US firms during a wider IRGC linked cyber campaign.

May 27, 2026

Trojanized Gemini and Claude Installers Target Developers Via SEO Poisoning

Read More

3 minute read

Trojanized Gemini and Claude Installers Target Developers Via SEO Poisoning

Cybercriminals are using SEO poisoning and fake Gemini and Claude installer sites to infect developers with fileless malware and steal data.

May 26, 2026

Claude Mythos AI Identified 10,000+ Software Vulnerabilities in One Month

Read More

2 minute read

Claude Mythos AI Identified 10,000+ Software Vulnerabilities in One Month

Anthropic says its Claude Mythos AI identified more than 10,000 software vulnerabilities in one month, including critical flaws in open-source code.

May 26, 2026

FBI Chief Kash Patel’s Clothing Store Hacked in ClickFix Infostealer Attack

Read More

2 minute read

FBI Chief Kash Patel’s Clothing Store Hacked in ClickFix Infostealer Attack

Hackers compromised FBI Chief Kash Patel’s clothing store in a ClickFix attack that tricked macOS users into installing infostealer malware.

May 25, 2026