ESET researchers have identified a new threat actor targeting Windows servers with a passive C++ backdoor and a malicious IIS ...

IntroductionAPT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima) is a North Korean-aligned threat actor active since at least 2012. APT37 primarily targets South Korean individuals ...

Analysis of the malware and tools used in an intrusion links a threat actor to three different ransomware-as-a-service (RaaS) ...

August 2025 campaigns deliver kkRAT and Gh0st RAT variants via SEO poisoning, disabling antivirus to hijack crypto wallets.

MostereRAT phishing campaign targets Japanese users with advanced evasion tactics, disabling defenses and stealing data.

The browser is now the frontline for cyberattacks. From phishing kits and ClickFix lures to malicious OAuth apps and ...

When a North Korean scammer asks Claude "what is a muffin?" it seems innocent enough. When that same person uses AI to ...

A HAR file is a JSON archive file format that stores browsing data across multiple browsers. It works by storing a data session between the client and server. In other words, a HAR file is used to ...

Microsoft PC Manager is an all-in-one utility toolkit to maintain, optimize, and monitor various health aspects of your ...

A sophisticated cyber‐espionage operation is exploiting Windows shortcut files disguised alongside seemingly genuine PDF newsletters to surreptiti ...

As cyberattacks grow more complex, digital forensics certs can equip professionals with the skills and credibility to ...

Microsoft has acknowledged an issue with its recent August 2025 security updates that prevent users from resetting or recovering their systems using built-in Windows tools. According the company, the ...