The attack consists of a NexShield malicious browser extension, a social engineering technique to crash the browser, and a Python-based RAT.

The Python-based information stealer SolyxImmortal uses legitimate APIs and libraries for stealthy data gathering and ...

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...

U.S. federal authorities have brought fraud charges against a former information technology administrator for the House ...

The good news is that not clicking on unknown links avoids it entirely.

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations. Boto Cor-de-Rosa campaign tracks delivery success.

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to distribute credential‑stealing payloads.

Hybrid work has driven a surge in Active Directory password resets, turning minor lockouts into major productivity drains.

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

Hybrid work has driven a surge in Active Directory password resets, turning minor lockouts into major productivity drains. Specops shows why remote access, cached credentials, and security policies ...

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.