Windows administrators face a hard, irreversible deadline in three days: when July 14's cumulative update installs, Microsoft permanently removes the registry key that allowed domain controllers to ...
The GigaWiper backdoor combines several malware families and can sabotage systems using a wiper, encryption, and wiping ...
The modular Golang backdoor combines remote administration, multiple disk-wiping logics, and a Crucio-derived ransomware ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
A patch Microsoft released on Wednesday to fix a zero-day vulnerability in its Defender security engine may cause Windows ...
A fileless malware framework is abusing Google’s Blogspot platform to deliver PureLog Stealer directly into computer memory, sharpening concerns that trusted web services are being turned into staging ...
Throughout 2025, the Russia-aligned Gamaredon threat group exclusively targeted governmental and military institutions in Ukraine.Gamaredon ...
Prinz Eugen ransomware targets recently modified files first and skips ransom notes, exposing backup, EDR, and incident response gaps for IT teams.
Microsoft on Wednesday declared DNS over HTTPS (DoH) generally available for Windows DNS Server, making it the first time enterprises can encrypt client-to-resolver DNS traffic in a production Windows ...
Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...
Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other sensitive data. Developers searching for Claude Code installation instructions ...
A variant of the PureLogs infostealer malware has been distributed through purchase-order-themed phishing emails that use a malicious JavaScript file to launch a multi-stage infection chain on Windows ...