How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

A phishing campaign targeting carefully selected “high-value” corporate employees has been using LinkedIn direct messages to deliver weaponized downloads, highlighting how criminals are shifting away ...

Researchers found a LinkedIn phishing campaign delivering a remote access trojan via DLL sideloading, WinRAR SFX files, and ...

【本文由小黑盒作者@周铁男是我于01月17日发布，转载请标明出处！】 今天看到火绒团队发的《银狐后门：Python库压缩包篡改与Chrome伪装攻击分析》后，感觉这里用到了一种很新奇的方法，于是我做了复现，顺便分享给大家共同学习 这里我结合这几年兴起的无文件攻击手段来植入后门（后门就是哆啦A梦的任意门，来去自如） ...

Abstract: The paper considers methods of identification of executable signatures using statistical criteria. Identification here should be understood as a process of file recognition by establishing ...

Imagine a situation where you wrote an excellent script to automate a tedious task for you. But when you try to execute it in Linux, all you get is a “Permission ...

VirusTotal has discovered a phishing campaign hidden in SVG files that create convincing portals impersonating Colombia's judicial system that deliver malware. VirusTotal detected this campaign after ...