Bitdefender researchers show how Windows bind links can create conflicting filesystem views to hide malware from endpoint ...
The South African Human Rights Commission confirmed that its website was breached by a threat actor who injected a trojan in ...
The attack vector is available for rent at scale, and evades AV and EDR, leaving YARA analysis as the best detection option.
A likely AI-generated PowerShell script mapped Active Directory after an attacker gained RDP access to a Windows Server with ...
A newly identified destructive Windows backdoor combines ransomware-like encryption with multiple data-wiping features, ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
A threat actor has been caught using AI-generated malware in a real network intrusion, deploying a PowerShell script that an ...
Sophos says Claude Code, Cursor, and Codex triggered Windows endpoint rules for credential access, LOLBin downloads, and ...
Gamaredon hacking group escalated its decade-long espionage campaign against Ukraine in 2025, exploiting a weaponized WinRAR vulnerability, CVE-2025-8088, to deploy destructive wiper malware for the ...
Throughout 2025, the Russia-aligned Gamaredon threat group exclusively targeted governmental and military institutions in Ukraine.Gamaredon ...