Microsoft has observed a surge in attacks using the ACR Stealer malware to steal browser-stored passwords, authentication ...
This week’s ThreatsDay Bulletin covers spyware-laced game cheats, fake installers, infostealer, ransomware, phishing kits, ...
New TELEPUZ malware spreads through ClickFix, then steals browser cookies, logs keystrokes, runs commands, and installs ...
One of the Russian government’s most elite hacking groups has adopted an attack, known as Clickfix, to compromise devices ...
A financially motivated Russian threat actor tracked as UAT-11795 is using trojanized software to steal credentials and ...
The attack vector is available for rent at scale, and evades AV and EDR, leaving YARA analysis as the best detection option.
Cybersecurity investigators have uncovered an AI-generated PowerShell script used during a live attack to map a company’s Active Directory environment, offering fresh evidence that criminals are ...
GigaWiper is a destructive backdoor that combines multiple wiping and ransomware-like capabilities into a single operational ...
A fileless malware framework is abusing Google’s Blogspot platform to deliver PureLog Stealer directly into computer memory ...
With Dev Configs for Windows, Microsoft has released an open-source collection of configurations that automate the setup of ...