DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...

The Medusa ransomware group is operating at a fast pace by leveraging zero-days and quickly exploiting new bugs and breached systems.

Cybercriminals are increasingly prioritizing speed and scalability over technical sophistication. Rather than crafting highly ...

You can wrap an executable file around a PowerShell script (PS1) so that you can distribute the script as an .exe file rather than distributing a “raw” script file. This eliminates the need to explain ...

The multi-stage campaign targeting South Korea uses weaponized Windows shortcuts and GitHub-based command and control to ...

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.

Windows 11 KB5086672 is now rolling out as an optional update with several notable improvements after March 2026 update ...

Windows 11 Insiders are getting a new Feature Flags settings page that allows to enable or disable hidden features without ...

As enterprises rely more heavily on AI technologies and services, attackers’ living-off-the-land techniques have evolved to ...

A new report dubbed "BrowserGate" warns that Microsoft's LinkedIn is using hidden JavaScript scripts on its website to scan ...