Fake Claude Code Installers Deliver Credential-Stealing Malware

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other ...

Mac Users Warned Over Fake Claude Install Instructions

Hackers are using Google Ads and Claude shared chats to target Mac users with fake setup instructions that can install malware.
Tech Times

Fake Claude Code Installers on 32 Live Sites Steal Developer API Keys via Google Ads

Fake Claude Code installer malware used Google Ads to place spoofed AI tool pages above real documentation since March 2026.
Bleeping Computer

Fake Claude Code install guides push infostealers in InstallFix attacks

Threat actors are employing a new variation of the ClickFix social engineering technique called InstallFix to convince users into running malicious commands under the pretext of installing legitimate ...
Hosted on MSN

Mac users beware — scammers are hijacking Claude chats and Google ads to push malware

Crooks abused Claude’s “Shared Chats” feature to plant fake install instructions leading to infostealer infections Fraudulent chats were promoted via Google Ads, showing authentic Claude URLs to trick ...
Tech Times

Claude Code Plugins Get Official Directory: Anthropic Flags Unverified MCP Risks

Claude Code plugins now have an official Anthropic-managed directory at github.com/anthropics/claude-plugins-official, consolidating 30-plus internal and 15 vetted external Claude Code extensions behi ...