Fake OpenAI repository on Hugging Face pushes infostealer malware

A malicious Hugging Face repository that reached the platform's trending list impersonated OpenAI's "Privacy Filter" project ...

Stealthy malware abuses Microsoft Phone Link to siphon SMS OTPs from enterprise PCs

A previously undocumented .NET trojan and its companion Pheno plugin allow attackers to capture mobile authentication codes ...

Trojan abuses Microsoft Phone Link app to steal your passwords

The CloudZ Trojan steals data through Microsoft Phone Link. The campaign has been active since at least January 2026.  Follow ...
Infosecurity Magazine

CloudZ Malware Abuses Phone Link to Steal SMS OTPs

A Windows malware toolkit has been observed stealing SMS messages and one-time passwords (OTPs) from victim machines by ...

CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs

A new version of the CloudZ remote access tool (RAT) is deploying a previously unseen malicious plugin called Pheno that ...
The Hacker News

Windows Phone Link Exploited by CloudZ RAT to Steal Credentials and OTPs

CloudZ RAT exploits Phone Link since Jan 2026, stealing credentials and OTPs via Pheno plugin, bypassing 2FA protections.
Dark Reading

Attacks Abuse Windows Phone Link to Steal Texts & Bypass 2FA

Attackers are dropping the CloudZ RAT and a fresh plug-in, Pheno, to hijack the Windows-based bridge between PCs and ...
HUB

For Media

Johns Hopkins research suggests the city's Code Red Extreme Heat alert system based on daytime temperature forecasts may need to be updated to include nighttime temperature readings to be more helpful ...