Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

An analysis of the destructive malware reveals extensive living-off-the-land (LotL) techniques and detailed strategies for ...

A cyber group is impersonating IT helpdesk staff via Microsoft Teams to deploy malware and target corporate systems.

France is replacing 2.5 million Windows desktops with Linux - and I mapped out its new stack ...

A cybercrime group impersonates IT helpdesk staff on Microsoft Teams, deploying SNOW malware to steal credentials and ...

DEEP#DOOR embeds a Python RAT in a dropper script, using bore[.]pub C2 to steal credentials and evade Windows defenses, ...

Claude AI guided a threat actor toward OT ICS SCADA systems in an attack on a water and drainage utility in Mexico.

Ransomware continues to pose a serious threat to U.S. critical infrastructure, with more than 2,100 related incidents reported to federal authorities in 2025, according to the latest FBI Internet ...

The Payouts King ransomware is using the QEMU emulator as a reverse SSH backdoor to run hidden virtual machines on compromised systems and bypass endpoint security. QEMU is an open-source CPU emulator ...

A stealthy Python-based backdoor framework capable of long-term surveillance and credential theft has been identified ...

The stealthy Python-based backdoor framework deploys a persistent Windows implant likely designed for espionage.