ESET researchers document how the Sednit APT group has reemerged with a modern toolkit centered on two paired implants – BeardShell and Covenant.

Coverage claims without context are one of the most persistent sources of confusion in security tooling. This post breaks down four myths behind ATT&CK coverage claims and offers a more useful ...

Clickfix attacks surged 500% in early 2025. Cybercriminals now use AI in BEC scams. AI is making phishing harder to detect. Cybercriminals are shifting their techniques to focus on the human element, ...

A threat campaign against human resource (HR) departments has recently been launched. What seems like a decent resume ...

Illegally downloading the latest Oscar contender might feel like beating the system. But when the malware kicks in, as Morpheus once said, “Welcome to the real world.” Lurking in the shadows lies a ...

ChatGPT Atlas update adds multiple account sign-in using browser profiles, helping users separate personal, work, and school ...

New ClickFix variant maps WebDAV drive to run trojanized WorkFlowy app, enabling stealth C2 beacon and payload delivery.

A new malware strain dubbed Slopoly, likely created using generative AI tools, allowed a threat actor to remain on a compromised server for more than a week and steal data in an Interlock ransomware ...

Can you really get a Windows PC running like new again? Using this free tool from Microsoft, you can get pretty close.

We found fake “verify you are human” pages on hacked WordPress sites that trick Windows users into installing the Vidar ...

Two of the eight accounts are archived official profiles from the Biden administration era. Harris follows @vp46archive, the ...