News
CastleRAT and CastleLoader, active since March 2025, spread malware via phishing and GitHub repos, enabling data theft.
Security researchers found malware packages using the Ethereum blockchain to conceal malicious commands on GitHub repos.
ReversingLabs reveals hackers using Ethereum Smart contracts in NPM packages to conceal malware URLs, bypass scans, and ...
Pro tip, don't install PowerShell commands without approval A team of data thieves has doubled down by developing its ...
Turn an unused Raspberry Pi into something useful with projects like a travel router, weather station, game server, streaming ...
IntroductionAPT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima) is a North Korean-aligned threat actor active since at least 2012. APT37 primarily targets South Korean individuals ...
Your weekly strategic brief on the cyber threat landscape. Uncover the deeper patterns behind attacks, from bootkit malware ...
11hon MSN
FileFix attacks use fake Facebook security alerts to trick victims into running infostealers
ClickFix typically asks the victim to perform a fake CAPTCHA test. FileFix tricks the user into copying and pasting a command ...
Hackers exploit X’s Grok AI to spread malware via promoted ads, exposing millions to malicious links in a scheme researchers ...
A threat actor named WhiteCobra has targeting VSCode, Cursor, and Windsurf users by planting 24 malicious extensions in the ...
4don MSN
A mysterious Chinese AI pentesting tool has appeared online, with over 10,000 downloads so far
Widely adopted it is. The tool is freely available on PyPI, the world’s biggest Python Package Index, and it has been ...
Scientists at NYU developed a ransomware prototype that uses LLMs to autonomously to plan, adapt, and execute ransomware attacks. ESET researchers, not knowing about the NYU project, apparently ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback