Watch what you type. The real 7-Zip uses a .org domain, but a .com version is distributing a Trojan, according to antivirus ...

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.

When Microsoft patched a vulnerability last summer that allowed threat actors to use Windows’ shortcut (.lnk) files in ...

A surge in LummaStealer infections has been observed, driven by social engineering campaigns leveraging the ClickFix technique to deliver the CastleLoader malware.

A fake 7-Zip website is distributing a trojanized installer of the popular archiving tool that turns the user's computer into ...

As if snooping on your workers wasn't bad enough Your supervisor may like using employee monitoring apps to keep tabs on you, but crims like the snooping software even more. Threat actors are now ...

The campaign exploits an Office vulnerability to deliver the modular XWorm RAT, chaining HTA, PowerShell, and in-memory .NET execution to sidestep detection and expand post-compromise control.

Always get your wares from reputable sources.

Researchers revealed a Phorpiex-distributed phishing campaign using malicious LNK files to deploy Global Group ransomware ...

Malwarebytes has published a warning about a 7-Zip impersonation campaign that blends a convincing fake download site with a trojanized installer designed for long-term monetization.

Now Microsoft has confirmed three zero-day Windows security bypass vulnerabilities, users are warned to get their update ...

By putting conflicting metadata in LNK files, a researcher found four new ways to spoof targets, hide arguments, and run unintended programs in Windows Explorer.