Transparent Tribe (APT36) is linked to new cyber-espionage attacks using malicious LNK files, adaptive RATs, and long-term ...

Mustang Panda deployed TONESHELL via a signed kernel-mode rootkit, targeting Asian government networks and evading security ...

First and foremost, I don't recommend doing this yourself. I created an isolated virtual machine and used a firewall to prevent it from access the rest of my home network. Then I downloaded malware ...

We're on the heels of 2026, and I can confidently say that you don't really need a third-party antivirus program on your PC.

The packer plays a key role in initial access operations. Rather than delivering a single malware family, pkr_mtsi has been ...

TL;DR Introduction Infostealers are not new malware. They have been around for decades. What has changed is how effective ...

That's according to researchers from Radware, who have created a new exploit chain it calls "ZombieAgent," which demonstrates ...

A new sample of the ToneShell backdoor, typically seen in Chinese cyberespionage campaigns, has been delivered through a kernel-mode loader in attacks against government organizations.

This is not a drill! The makers of the popular text editor Notepad++ are warning that the Notepad++ updater, which goes by the name WinGUp, links to malware servers. This is a case of traffic ...

Ever since reporting earlier this year on how easy it is to trick an agentic browser, I've been following the intersections between modern AI and old-school scams. Now, there's a new convergence on ...

A new AMOS infostealer campaign is abusing Google search ads to lure users into Grok and ChatGPT conversations that appear to offer “helpful” instructions but ultimately lead to installing the AMOS ...