Cybernews

Too popular? Fake Claude website distributes malware to visitors

According to Malwarebytes, the malicious file contains an MSI installer that mimics the legitimate Anthropic installation chain and installs the real Claude application.
Security Boulevard

Fake Claude site installs malware that gives attackers access to your computer

Claude’s rapid growth—nearly 290 million web visits per month—has made it an attractive target for attackers, and this ...
SecurityWeek

Fake Claude Website Distributes PlugX RAT

A website posing as a legitimate Anthropic Claude domain was caught serving a remote access trojan to its visitors, Malwarebytes reports. Relying on Claude’s popularity, a threat actor created a site ...
HHS

Chinese Hackers Deploy New PlugX Variant

A remote access Trojan that's a staple of Chinese nation-state hacking is part of an ongoing campaign targeting telecom and manufacturing sectors in Central and South Asian countries. See Also: ...
The Hacker News

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

TA416 targeted European governments from mid-2025 using PlugX and OAuth abuse, enabling cyber espionage against EU and NATO ...
TechSpot

FBI triggers self-destruction of China-backed malware infecting US computers

In a nutshell: The Justice Department and the FBI recently announced a multi-month operation that took down a variant of the PlugX family of malware. The malicious tool was developed by a hacking team ...