https://www.bleepingcomputer.com/news/security/glassworm-malware-returns-in-third-wave-of-malicious-vs-code-packages/
Glassworm malware returns in third wave of malicious VS Code packages
The Glassworm campaign, which first emerged on the OpenVSX and Microsoft Visual Studio marketplaces in October, is now in its third wave, with 24 new packages...
glassworm malware returnswave
https://www.malwarebytes.com/blog/news/2025/11/new-clickfix-wave-infects-users-with-hidden-malware-in-images-and-fake-windows-updates
New ClickFix wave infects users with hidden malware in images and fake Windows updates |...
Nov 25, 2025 - ClickFix just got more convincing, hiding malware in PNG images and faking Windows updates to make users run dangerous commands.
hidden malwarenewclickfixwave
https://www.bleepingcomputer.com/news/security/new-wave-of-fake-interviews-use-35-npm-packages-to-spread-malware/
New wave of ‘fake interviews’ use 35 npm packages to spread malware
A new wave of North Korea's 'Contagious Interview' campaign is targeting job seekers with malicious npm packages that infect dev's devices with infostealers...
new wavenpm packagesuse
https://www.bleepingcomputer.com/news/security/new-glassworm-malware-wave-targets-macs-with-trojanized-crypto-wallets/
New GlassWorm malware wave targets Macs with trojanized crypto wallets
A fourth wave of the
glassworm malwarenewwavemacs
Sponsored https://www.cheekycrush.com/
CheekyCrush
https://www.koi.ai/blog/mcp-malware-wave-continues-a-remote-shell-in-backdoor
MCP Malware Wave Continues: A Remote Shell in Disguise
A remote shell disguised as legitimate software powers the ongoing MCP malware wave, posing stealthy risks to countless systems.
malware wavemcpcontinuesshell