A new malware campaign named ClearFake is rapidly spreading, infecting over 9,300 websites and exposing more than 200,000 users as of July 2024. This malware utilizes fake reCAPTCHA and Cloudflare checks to deploy Lumma and Vidar Stealer malware. Additionally, ClearFake is leveraging Binance Smart Chain technology to enhance its stealth capabilities. In related cybersecurity news, a critical vulnerability in Apache Tomcat (CVE-2025-24813) is being actively exploited, allowing attackers to gain control of vulnerable servers through unauthenticated PUT requests. Users are advised to update to safer versions (9.0.99, 10.1.35, or 11.0.3) immediately. Moreover, hackers are exploiting a severe PHP flaw (CVE-2024-4577) to deploy crypto miners and Quasar RAT on Windows servers, with 54% of attacks targeting Taiwan. The cybersecurity landscape continues to be threatened by various malware, including AMOS and Lumma, which are being spread through deceptive posts on Reddit, particularly aimed at cryptocurrency users.