Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.
Arctic Wolf says Anubis affiliates abused RMM tools, VPN logins, RDP, PsExec, and cloud-transfer tools before ransomware ...
Separate but similar campaigns described by Microsoft and Trend Micro use malicious zip files to spread malware via social ...
The group compromised at least 10 regional organizations, including two state-owned entities, and deployed a new backdoor.
Steam is one of the most popular storefronts in PC gaming, but it turns out that the Steam Workshop might presently be ...
Creating a library I can actually find things in ...
Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...
Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
A new malware campaign is targeting WhatsApp Web and Desktop users through fake document attachments. Cybersecurity experts ...
Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in ...
A new backdoor dubbed Mistic has been observed in financially motivated attacks targeting organizations in the insurance, ...