DEAD#VAX campaign delivers AsyncRAT via IPFS-hosted VHD phishing files, using fileless memory injection and obfuscated ...

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

The program is a free text and code editor that's been downloaded millions of times. The compromise began in June and is ...

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

MSP360 Backup is a powerful Time Machine alternative for advanced Mac users, offering scripting, strong encryption, and broad cloud support – but there's a steep learning curve.

The modular Windows RAT uses in-memory execution and live operator control to maintain persistence and exfiltrate sensitive ...

This is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ...

A new malicious campaign mixes the ClickFix method with fake CAPTCHA and a signed Microsoft Application Virtualization (App-V ...

The latest series of attacks began with phishing: a potential victim was offered to download "important working documents" from a link that looked like a Telegram file storage. Clicking on such a link ...

Unlike traditional attacks that rely on exploits, this succeeds through social engineering combined with abuse of Windows' own security architecture.

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations. Boto Cor-de-Rosa campaign tracks delivery success.