Fake Claude AI website delivers new 'Beagle' Windows malware
Summary
Attackers created a fake Claude AI website that tricks users into downloading malware called Beagle, a backdoor (a hidden entrance to a system that lets attackers run commands remotely) disguised as a legitimate Claude-Pro Relay tool. The malware uses a chain of loaders to hide itself in system memory and communicates with attackers' servers, while impersonating updates from various security companies to spread further.
Solution / Mitigation
Users should ensure they download Claude from the official portal and skip or hide sponsored search results. The presence of 'NOVupdate' files on a system is a strong indication of compromise.
Classification
Affected Vendors
Related Issues
Original source: https://www.bleepingcomputer.com/news/security/fake-claude-ai-website-delivers-new-beagle-windows-malware/
First tracked: May 7, 2026 at 08:00 AM
Classified by LLM (prompt v3) · confidence: 92%