China-linked CL-STA-1087 targets Southeast Asian militaries since 2020 using AppleChris and MemFun for espionage and ...

Semantic versioning gives PowerShell script changes clear meaning so you can evolve scripts quickly without letting updates devolve into chaos.

The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation ...

"Living Off the Land" attacks use built-in tools and processes instead of traditional malware.

After several years of using simple implants, the Russia-affiliated threat actor is back with two new sophisticated malware tools.

APT28 deploys BEARDSHELL and COVENANT since April 2024 targeting Ukrainian military, enabling cloud-based espionage and persistent surveillance.

A new malware strain dubbed Slopoly, likely created using generative AI tools, allowed a threat actor to remain on a compromised server for more than a week and steal data in an Interlock ransomware ...

The Windows release follows the earlier launch of the Codex desktop app for macOS, which OpenAI says was downloaded more than one million times in its first week ...

ESET researchers document how the Sednit APT group has reemerged with a modern toolkit centered on two paired implants – BeardShell and Covenant.

BlackSanta is a malware module that kills EDR and AV at the kernel level prior to unleashing the malware’s final purpose.

Starting June 1, Microsoft will stop sending Teams meeting recording expiration emails. New settings let admins re-enable ...

A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.