CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

Exploiting .lnk files is a strategy that has been used for years and still works, says new report from Forcepoint.

Managing Microsoft 365 and Azure Active Directory resources efficiently often requires automation tools beyond standard admin ...

I use Windows 11 PowerShell for silly things, stress-relief scripts, and visual tweaks that turn a boring terminal into a fun ...

DEAD#VAX campaign delivers AsyncRAT via IPFS-hosted VHD phishing files, using fileless memory injection and obfuscated ...

Security researchers warn of active attacks on SolarWinds Web Help Desk. Malicious actors are exploiting vulnerabilities to infiltrate systems and then ...

Researchers at Huntress and Microsoft have shared findings from their analysis of a new SolarWinds Web Help Desk vulnerability.

India is being targeted by multiple espionage campaigns delivered by the Pakistan-attributed Transparent Tribe (aka APT36).

Tiny cache corruption can imitate faulty graphic driver issues.

A complex phishing campaign uses decentralized fake PDFs that mount virtual drives to silently install the AsyncRAT malware.

Microsoft links SolarWinds WHD exploits to RCE, lateral movement, and domain compromise in multi-stage attacks.

A new open-source and cross-platform tool called Tirith can detect homoglyph attacks over command-line environments by ...