DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

A series of malicious LNK files targeting users in South Korea has been detected using a multi-stage attack chain that uses ...

PowerShell unlocks powerful Windows features you can’t access in Settings. Here are the ones actually worth using.

The multi-stage campaign targeting South Korea uses weaponized Windows shortcuts and GitHub-based command and control to ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Microsoft has deprecated and removed the Support and Recovery Assistant (SaRA) command-line utility from all in-support ...

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...

UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...

The Medusa ransomware group is operating at a fast pace by leveraging zero-days and quickly exploiting new bugs and breached ...

If Microsoft Copilot isn't working for you, it's working against you. Luckily, it's easy to remove Copilot and debloat ...

As enterprises rely more heavily on AI technologies and services, attackers’ living-off-the-land techniques have evolved to ...