Neowin News Feed for: Malware

Microsoft Defender flagging "Cerdigent" trojan malware on Windows 11, Server PCs worldwide

Sayan Sen — Sun, 03 May 2026 15:50:01 +0000

Microsoft Defender is flagging “Cerdigent” trojan malware alerts on Windows 11 and Windows Server PCs across multiple regions worldwide. Read more...

Android malware NGate steals NFC data through HandyPay app

Sanket Mungase — Tue, 21 Apr 2026 12:50:01 +0000

In an Android malware campaign, attackers are stealing NFC payment information through a lottery site and a trojanized application, particularly in Brazil. Read more...

Beware! This "Windows 11 24H2" update download can quietly steal your sensitive data

Sayan Sen — Mon, 13 Apr 2026 10:26:01 +0000

This Windows 11 24H2 update download could quietly compromise your system and steal sensitive personal data, putting your system's privacy and security at serious risk. Read more...

Adobe brings Security Updates to tackle CVE-2026-34621 vulnerability

Sanket Mungase — Sun, 12 Apr 2026 08:08:01 +0000

Adobe has brought in updates to fix a critical vulnerability that was allowing attackers to access users' system local files. Read more...

CPU-Z and HWMonitor downloads tampered with by hackers in new supply chain style attack

David Uzondu — Fri, 10 Apr 2026 19:16:01 +0000

CPU-Z and HWMonitor are popular system tools, likely making them a target for attackers who used that trust to spread infected installers via a compromised download page. Read more...

New phishing scam uses legit software to hijack computers, but the real story is even wilder

Ivan Jenic — Wed, 04 Mar 2026 05:28:01 +0000

Shell companies, EV certificates, and malware subscription services: take a closer look at one of the most audacious phishing scams in recent memory. Read more...

Malicious VPN steals full ChatGPT and Gemini conversations of over 8 million users

Paul Hill — Tue, 16 Dec 2025 05:52:01 +0000

Security researchers found that "privacy" extensions are secretly harvesting and selling the complete conversations of over eight million AI users. Read more...

Unofficial Windows 11 requirements bypass download could infect your PC if you're careless

Sayan Sen — Sat, 01 Nov 2025 16:30:01 +0000

The developer of a popular Windows 11 system requirements bypass and customization app has issued a potential malware warning that can affect your system if you are not careful. Read more...

Open-source AI platform taps VirusTotal to ensure safety of downloads

Paul Hill — Thu, 23 Oct 2025 12:54:01 +0000

VirusTotal has decided to team up with Hugging Face where people download open source language models to help identify new threats. Read more...

Xubuntu website compromised to deliver crypto malware to Windows 10 refugees

Paul Hill — Mon, 20 Oct 2025 10:58:01 +0000

Users looking to switch to Linux may have been affected by malware being distributed from the Xubuntu site after hackers compromised it to deliver crypto stealing malware. Read more...

Microsoft: The future is browser-native and we must secure it

Usama Jawad — Fri, 17 Oct 2025 19:48:01 +0000

Microsoft has emphasized the importance of securing the browser, calling it the "universal workspace" that combines, AI, cloud, and SaaS. Read more...

Fake itch.io game pages are secretly stealing gamer accounts and planting malware

Paul Hill — Wed, 08 Oct 2025 11:36:01 +0000

Malwarebytes tells gamers to be careful about downloading games from websites that look like (but aren't) Itch.io. Read more...

Over 300 npm packages compromised by self-replicating worm

David Uzondu — Wed, 17 Sep 2025 01:10:01 +0000

A new piece of malware is spreading through the popular tinycolor NPM library and more than 300 other packages, some of which belong to CrowdStrike. Read more...

Google denies major Gmail security warning that says 2.5 billion users are in danger

Paul Hill — Tue, 02 Sep 2025 08:28:01 +0000

Google has played down reports that 2.5 billion Gmail users are at risk and need to update their passwords. It said Gmail remains very secure. Read more...

Why Windows anti-virus scanners flag Linux ISOs as virus, and what to do

Paul Hill — Mon, 01 Sep 2025 05:54:03 +0000

Have any of your Linux ISOs been flagged up as malware by anti-virus software? If so, here's what you should do. Read more...

Login credentials for millions of PayPal accounts reportedly being sold online

Usama Jawad — Tue, 19 Aug 2025 05:46:02 +0000

A seller claiming to have the credentials of millions of PayPal customers exposed as recently as May 2025 is selling them online for $750. Read more...

Update your WinRAR because hackers are using this flaw to sneak malware onto your PC

David Uzondu — Sat, 09 Aug 2025 07:44:02 +0000

WinRAR 7.13 recently dropped with a fix for a nasty directory traversal bug in older versions, and ESET researchers have now shown just how bad the flaw really is. Read more...

Don't install APKs until you do these things first

Ramat Adetunji — Tue, 22 Jul 2025 16:00:01 +0000

Want to install APKs safely? Here's how to avoid shady apps and protect your phone from malware and scams. Read more...

Microsoft: Over 394,000 Windows PCs infected by Lumma malware, affects Chrome, Edge, Firefox

Sayan Sen — Wed, 21 May 2025 18:30:01 +0000

Microsoft has released details about Lumma infostealer that infected over 394,000 Windows systems in just two months. Read more...

This printer company served you malware for months and dismissed it as false positives

David Uzondu — Sat, 17 May 2025 05:42:01 +0000

A printer company distributed malware-infected files for months. Analysts have now dissected the code and revealed what the malware does once it infects a computer. Read more...

Stolen credentials linked to compromised DOGE employee found circulating online

David Uzondu — Fri, 09 May 2025 06:10:01 +0000

A new report has surfaced that the credentials of a DOGE software engineer were present in multiple public dumps from info-stealer malware infections. Read more...

New research exposes malicious Go modules that totally wipe out your disk

David Uzondu — Fri, 02 May 2025 11:22:01 +0000

Golang's popularity and open module system unfortunately makes it a prime target for supply chain attacks, now a report shows how attackers use malicious Go modules to wipe disks. Read more...

WhatsApp attachment flaw could trick Windows users into downloading and installing malware

Sayan Sen — Tue, 08 Apr 2025 19:50:01 +0000

Meta reports a security flaw in WhatsApp for Windows that lets attackers trick users into downloading and installing harmful malicious code. Read more...

Microsoft lists a reason why you should update to Windows 11 from 10 via clean install

Sayan Sen — Sat, 08 Mar 2025 18:08:02 +0000

Microsoft has listed a reason why Windows 10 users should update to Windows 11 and do so via a clean install. Read more...

Chinese hackers exploit Linux with new WolfsBane malware

Ramat Adetunji — Fri, 22 Nov 2024 12:22:02 +0000

ESET researchers uncover "WolfsBane," a Linux backdoor linked to the China-based Gelsemium group. This is Gelsemium's first known Linux malware—hinting at a change in attack strategies. Read more...

North Korean hackers caught spreading new malware for macOS

David Uzondu — Tue, 12 Nov 2024 15:00:01 +0000

North Korean hackers may have found a new trick to bypass macOS security and hide malicious code using Google's Flutter. Read more...

Paradox warns a popular Cities: Skylines II mod may have spread malware

Pulasthi Ariyasinghe — Fri, 01 Nov 2024 15:32:01 +0000

Cities: Skylines II players who play with mods may want to scan their system for potential malware, as the popular Traffic mod had been breached to spread a suspicious .dll file. Read more...

Microsoft reveals how Windows 10 and Windows 11 block keyloggers

Pradeep Viswanathan — Fri, 27 Sep 2024 14:42:01 +0000

Microsoft has outlined how the built-in Windows Defender Antivirus safeguards Windows 10 and 11 users against keylogger and screen scraper malware. Read more...

Fake CrowdStrike manual delivers malware, not recovery

Pradeep Viswanathan — Tue, 23 Jul 2024 15:16:01 +0000

Cybercriminals are exploiting the recent faulty CrowdStrike update outage using a fake Microsoft recovery manual Word document to deliver a stealer malware which is now tracked as Daolpu. Read more...

Cybercriminals exploit CrowdStrike chaos to spread Crowdstrike-hotfix.zip malware

Pradeep Viswanathan — Sun, 21 Jul 2024 16:57:36 +0000

While CrowdStrike and Microsoft provided fixes, cybercriminals exploited the situation by spreading malware disguised as a hotfix and launching phishing campaigns targeting CrowdStrike customers. Read more...

US Department of Justice smashes 911 S5 botnet run by Chinese national

Paul Hill — Thu, 30 May 2024 00:38:01 +0000

The US Department of Justice has announced the arrest of YunHe Wang for operating what could be the largest botnet ever. While he has been charged, Wang has not yet been convicted. Read more...

Video shows exactly why you shouldn't run unsupported Windows and stick to 10/11

Sayan Sen — Thu, 16 May 2024 23:06:01 +0000

Some folks love the older retro stuff from the bygone days, like Windows 95 or Windows XP. However, there are dangers to doing it and a video shows what could happen when you run such an OS. Read more...

We tested AceMagic, Beelink, and Geekom Mini PCs with several anti-malware programs

Steven Parker — Mon, 29 Apr 2024 14:29:47 +0000

Reports have surfaced this year about reviewers receiving Mini PC preloaded with malware. This is obviously not good, but it raises the question if some of the Mini PCs Neowin received were clean. Read more...

GitHub abused to host malware and create download links seemingly affiliated with Microsoft

Martin Hodás — Mon, 22 Apr 2024 13:50:01 +0000

File upload logic in GitHub's comments allows hackers to host malware on the service and abuse trusted developers and companies, such as Microsoft, to create legitimate-looking URLs. Read more...

Beware, cheaters: Malware campaign targets Call of Duty players using third-party apps

Martin Hodás — Fri, 29 Mar 2024 09:08:01 +0000

The ongoing malware campaign targeting gamers steals credentials to various online services. Activision Blizzard is reportedly investigating and trying to help those with affected accounts. Read more...

New malware bypassing Windows SmartScreen is hungry for your data, and it wants it all

Martin Hodás — Tue, 16 Jan 2024 15:30:01 +0000

Data-harvesting malware Phemedrone exploits vulnerability in Windows Defender SmartScreen to avoid warnings and checks. It collects various sensitive data and sends them to the hackers. Read more...

Gmail is working to cut down on spam at the source from 2024

Paul Hill — Wed, 04 Oct 2023 08:54:01 +0000

Google has outlined several measures taking senders of bulk emails to help cut down on spam. The company will be implementing the changes by February 2024 and users should see a difference. Read more...

McAfee launches AI-powered and identity features in latest products

Paul Hill — Mon, 02 Oct 2023 08:30:01 +0000

McAfee has launched a bunch of new features for its McAfee+ and McAfee+ Family plans. Pricing begins at $49.99 for the first year that you decide to subscribe. Read on to see the new features. Read more...

Microsoft is reportedly allowing malicious ads to be served on Bing's AI Chat

Mehrotra A — Fri, 29 Sep 2023 07:04:01 +0000

Bing AI Chat may be serving bad and malicious websites via ads to the users. A new report tested Bing Ads and found it relatively easy for someone to inject malicious ads into Bing AI Chat. Read more...

Microsoft warns about a new malware threat that's being distributed via Teams chats

John Callaham — Wed, 13 Sep 2023 14:14:01 +0000

Microsoft has revealed that a threat actor labeled Storm-0324 is distributing malware by using "phishing lures through Microsoft Teams chats" that could be used to launch ransomware attacks. Read more...