Hackers hijack thousands of sites for ClickFix and FakeUpdate attacks

Published on June 1, 2026

A threat actor tracked as DriveSurge has been operating large-scale malware distribution campaigns using ClickFix and FakeUpdates techniques on compromised sites. [...]

Continue reading on website
Other news

Red Hat npm packages compromised to steal developer credentials

June 1, 2026
More than 30 npm packages under Red Hat's '@redhat-cloud-services' namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, dubbed "Miasma." [...]