New macOS stealer campaign uses Script Editor in ClickFix attack

A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix ...
How-To Geek on MSN

These 10 open-source apps built Linux into what it is today

On the server and on the desktop, these apps helped showcase what Linux can do.
The Hacker News

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

Cookie-gated PHP web shells enable persistent Linux RCE via cron-based re-creation, reducing detection in routine traffic ...
Microsoft

Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hosting environments

Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
How-To Geek on MSN

This is the one Windows feature that convinced me I don't need Linux

I’ve tried to make Linux my daily OS, but I keep coming back to Windows. Here’s what still pulls me back, even when Linux ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
IEEE

Exploit Linux VIM Configuration Backdoor and Mitigation : Strategies to run scripts via a VIM backdoor and mitigation techniques

Abstract: The Vim text editor, due to its significant scripting capabilities (Vimscript) and legitimate features like modeline and autocmd, presents a unique attack surface often overlooked by ...
IEEE

Towards Automatic Triage and Taxonomy of Adversary Shell-Scripts

Abstract: Security professionals, researchers, and analysts identify attacks and produce cyber-threat intelligence feeds by analyzing network and system data. This process is time-consuming and ...