Microsoft

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...
Bitdefender

Microsoft’s MSHTA Legacy Tool Still Powers Malware Campaigns on Windows

Bitdefender security researchers have discovered that attackers continue to exploit Microsoft HTML Application Host (MSHTA), a legacy utility available by default on Windows systems that can execute ...
Hackaday

This Week In Security: Another Linux Exploit, Ubuntu Knocked Offline, Finals Interrupted, And Backdoored Tools

After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and a new ...
PC Gamer

Canonical, the company that makes Ubuntu Linux, says its web infrastructure is under a 'sustained, cross-border attack'

For the quickest way to join, simply enter your email below and get access. We will send a confirmation and sign you up to our newsletter to keep you updated on all your gaming news.
Security Boulevard

Anti-DDoS Firm Heaped Attacks on Brazilian ISPs

The post Anti-DDoS Firm Heaped Attacks on Brazilian ISPs appeared first on Krebs on Security. A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) ...
The Hacker News

Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign

An active campaign has been observed targeting internet-exposed instances running ComfyUI, a popular stable diffusion platform, to enlist them into a cryptocurrency mining and proxy botnet. "A purpose ...
Nature

A dataset collected in real-world industrial control systems for network attack detection

Industry 4.0 advancements are driving traditionally air-gapped Industrial Control Systems (ICSs) toward increased connectivity. This shift, while essential for enabling smart manufacturing and ...
Nature

Efficient detection of intrusions in TON-IoT dataset using hybrid feature selection approach

This research improves IoT attack classification by introducing a bias-aware dataset refinement strategy that eliminates IP- and port-based identifiers and applies a domain-guided hybrid feature ...
SDxCentral

How threat actors are really using AI

In November 2025, Anthropic, the Amazon and Google-backed AI firm behind Claude, came out with a startling claim: a Chinese state-sponsored group was using its chatbot’s coding capabilities to execute ...
GitHub

LUCID: A Practical, Lightweight Deep Learning Solution for DDoS Attack Detection

LUCID (Lightweight, Usable CNN in DDoS Detection) is a lightweight Deep Learning-based DDoS detection framework suitable for online resource-constrained environments, which leverages Convolutional ...
SecurityWeek

Two-Year-Old Ray AI Framework Flaw Exploited in Ongoing Campaign

Threat actors are abusing Ray’s lack of authentication to compromise exposed clusters and deploy LLM-generated payloads and cryptocurrency miners. Threat actors are exploiting a two-year-old ...