Microsoft Threat Intelligence presents a comprehensive analysis of The Gentlemen, a Go-based ransomware deployed by ...

An npm-slop package “mouse5212-super-formatter” targeting Claude users and acting as a stealer reached 676 downloads before being removed from the registry - and after making a major vibe coding ...

Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android ...

The PureLogs module targeted a wide range of browsers, including Google Chrome, Microsoft Edge, Brave, Opera, Yandex Browser, ...

North Korea-linked hackers have upgraded the InvisibleFerret malware to bypass script-based security tools, converting its Python code into compiled modules that are harder for defenders to inspect ...

Chinese hackers targeted telecom providers using new Linux and Windows malware called Showboat and JFMBackdoor.

A Chinese cyber-espionage campaign has been targeting telecommunications providers with newly discovered Linux and Windows ...

MSHTA is being used for both simple and advanced threats, deploying loaders and infostealers.

The latest SHub macOS infostealer variant abandons Terminal-based ClickFix tactics for AppleScript execution, using fake ...

A legacy Windows scripting utility tied to Internet Explorer is still being used in modern malware campaigns, researchers say ...

Attackers are increasingly abusing Microsoft’s legacy MSHTA utility to silently deliver malware, stealers, and persistent ...

A new infostealer variant targets macOS users by spoofing Apple, Microsoft, and Google and then then gets to work searching ...