The Hacker News

ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures

ClickFix attacks are delivering BabaDeda, Lorem Ipsum, and Potemkin loaders to deploy stealers, RATs, and ransomware-linked ...
CSO Online

Attackers abuse Google Ads, GitLab, and Claude to deliver malware

Researchers tracked a seven-week campaign that leveraged trusted platforms and AI-generated trust to trick users into ...
MUO on MSN

I found PowerShell's pipeline does what batch files can't and I stopped using CMD

A single pipeline replaced fourteen lines and I never looked back.
Microsoft

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...

Urgent Windows warning issued and don't ignore it if you use Microsoft Office

An urgent alert has been issued to millions of Windows users after the discovery of a new scam that offers Office and Spotify ...
Dark Reading

Fileless Phantom Stealer Targets Browser Credentials

In addition to executing entirely in memory, the malware's infection chain incorporates other anti-analysis techniques ...
The Hacker News

Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline

Cato Networks tracked Poisson using OpenSSH and Tailscale to maintain access after Havoc C2 outage in a 33-day intrusion.

That free Spotify tutorial stole your passwords. Here’s what to do.

Criminals are running polished fake tutorial videos on social media promising free Spotify Premium, Microsoft Office and ...

Windows Subsystem for Linux gives developers a compelling reason to stick with Microsoft - here's why

WSL 3 makes staying on Windows easier, especially for developers building or running Linux-based AI, container, or dev ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
Dark Reading

'Lorem Ipsum' Malware Pivots to ClickFix Delivery

New analysis shows the campaign, which uses compromised WordPress sites, may be linked to the ransomware and extortion group Vice Society.
Windows Latest

Microsoft released the Windows 11 Secure Boot update for all PCs, how to verify yours

Secure Boot 2023 is now rolling out to most Windows 11 PCs via the June update. Check your status and what IT admins need to ...