Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.

A phishing campaign targeting healthcare, government, hospitality, and education sectors uses several evasion techniques to ...

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be the first documented case of attackers abusing the Deno JavaScript runtime ...

BlackSanta is a malware module that kills EDR and AV at the kernel level prior to unleashing the malware’s final purpose.

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since ...

Distributed through over 100 GitHub repositories, the BoryptGrab stealer targets browser, wallet, system, and other user data.

During tax season, threat actors reliably take advantage of the urgency and familiarity of time-sensitive emails, including ...

Claude Code bypasses security controls by acting locally before monitoring, exposing data risks and audit gaps.

Ransomware hackers exploited a flaw with a maximum vulnerability score in Cisco firewall management software weeks before the ...

Hundreds of GitHub repositories seemingly offering “free game cheats” deliver malware, including the Vidar infostealer, ...

Legacy DOC files risk corruption, hide malware, and slow modern collaboration—DOCX solves all three with modular XML design.

Speagle malware exploits Cobra DocGuard servers to exfiltrate sensitive data, indicating targeted espionage risks for ...