They thought they were downloading Claude Code source. They got a nasty dose of malware instead

A malicious GitHub repository published by idbzoomh uses the Claude Code exposure as a lure to trick people into downloading ...

CPUID hacked to deliver malware via CPU-Z, HWMonitor downloads

Hackers gained access to an API for the CPUID project and changed the download links on the official website to serve ...
TMCnet

Endor Labs Finds Malware in Open Source Ecosystems Surges 14x in Two Years as Organizations Struggle to Respond

"Most application security programs were built around vulnerability management, not to detect malware in the software supply chain. Attackers understand this. AI coding agents, MCP servers, and model ...
Crowdfund Insider

Open-Source Software Malware Surging: Endor Labs

Malware in open source software is no longer a fringe threat–it's accelerating at an unprecedented rate. In 2025 alone, more ...

The official download for CPU-Z and HWMonitor has been hacked

With the links giving you a malware-infected file instead ...