Researchers from Zscaler found a new malware campaign dubbed Edgecution.
SentinelOne details Gaslight, a Rust-based macOS implant linked to North Korea-aligned actors that uses prompt injection to ...
JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
PSA: The widely used 7-Zip utility is once again affected by a potentially dangerous security vulnerability. The open-source file archiver can be exploited to execute malicious code by tricking users ...
A new threat actor is combining social engineering techniques, abuse of legitimate cloud infrastructure, and custom malware together to create what appears to be novel attack chain. Google Threat ...
In January 2026, Microsoft Defender Experts identified a new evolution in the ongoing ClickFix campaign. This updated tactic deliberately crashes victims’ browsers and then attempts to lure users into ...
A recent investigation has revealed a phishing campaign that began with a simple Python-based infostealer but ultimately led to the deployment of PureRAT, a full-featured commodity remote access ...
A new malware that leverages an AI-powered large language model (LLM) to generate commands for execution on compromised Windows systems has been identified by Ukrainian authorities. The National ...
Telegram fixed a zero-day vulnerability in its Windows desktop application that could be used to bypass security warnings and automatically launch Python scripts. Over the past few days, rumors have ...
Pythons are bashed with hammers, impaled on hooks and skinned alive to provide skins used by Italian luxury brand Gucci to craft handbags, shoes and belts that sell for hundreds if not thousands of ...
Certain zip files were appended by random byte data incorrectly without properly opening the zip file and adding another member. That data should generally be ignored or fixed (removed) the next time ...