The campaign exploits an Office vulnerability to deliver the modular XWorm RAT, chaining HTA, PowerShell, and in-memory .NET execution to sidestep detection and expand post-compromise control.

A member of the Crazy ransomware gang is abusing legitimate employee monitoring software and the SimpleHelp remote support ...

Researchers at Huntress and Microsoft have shared findings from their analysis of a new SolarWinds Web Help Desk vulnerability.

New research outlines how attackers bypass safeguards and why AI security must be treated as a system-wide problem.

Microsoft's Defender Security Research Team has observed threat actors actively exploiting internet-exposed SolarWinds Web Help Desk instances in multi-stage intrusions that led to lateral movement ...

A new open-source and cross-platform tool called Tirith can detect homoglyph attacks over command-line environments by ...

Baddies are exploiting a critical bug in React Native's Metro development server to deliver malware to both Windows and Linux ...

Active attacks exploit Metro4Shell (CVE-2025-11953) in React Native CLI to execute commands and deploy Rust malware.

Poland linked December 2025 cyber attacks on energy and manufacturing sites to Static Tundra, involving DynoWiper and ...

KONNI is using AI-generated backdoors to target crypto bros ...

In January 2025, French authorities freed Ledger co-founder David Balland after kidnappers demanded a large ransom in cryptocurrency. The case illustrated what crypto crime can look like when it ...

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Facebook password attacks are ongoing,security experts have warned. Just as users of the ...