Windows

December 11, 2025

19 Fake PNG Extensions Found in VS Code Marketplace

Researchers at ReversingLabs (RL) have uncovered a sophisticated supply chain campaign that involves 19 malicious Visual Studio Code (VS Code)…
Read More »
December 10, 2025

Zoom Rooms on Windows and macOS Exposed to Privilege Escalation and Data Leakage Flaws

Zoom has released security patches to address two critical vulnerabilities in Zoom Rooms deployments on both Windows and macOS. These…
Read More »
December 9, 2025

New Vishing Attack Exploits Microsoft Teams and QuickAssist to Deploy .NET Malware

A sophisticated vishing campaign has emerged that combines social engineering with legitimate Microsoft tools to establish command execution chains leading…
Read More »
December 8, 2025

Encrypted Configuration and Obfuscation Techniques

In the second installment of the “Advent of Configuration Extraction” series, security researchers have unwrapped QuasarRAT, a widely-deployed .NET remote…
Read More »
December 8, 2025

LOLPROX Unveils Undetected Exploitation Routes for Stealthy Hypervisor Attacks

A new security analysis has unveiled “LOLPROX,” a comprehensive catalog of “Living Off The Land” (LOL) techniques specifically targeting Proxmox…
Read More »
December 8, 2025

Threat Actors Distribute CoinMiner Malware through USB Drives to Infect Workstations

Cybercriminals continue to exploit USB drives as infection vectors, with recent campaigns delivering sophisticated CoinMiner malware that establishes persistent cryptocurrency-mining…
Read More »
December 7, 2025

FvncBot Android Malware Steals Keystrokes and Injects Harmful Payloads

A newly discovered Android banking trojan, FvncBot, has emerged as a sophisticated threat targeting mobile banking users in Poland. Researchers…
Read More »
December 5, 2025

Avast Antivirus Sandbox Vulnerabilities Allow Privilege Escalation

SAFA researchers uncovered four kernel heap overflow vulnerabilities in Avast Antivirus’s aswSnx.sys driver, designated CVE-2025-13032, affecting versions before 25.3 on…
Read More »
December 5, 2025

CISA, NSA Alert on BRICKSTORM Malware Targeting VMware ESXi and Windows Systems

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA), joined by Canadian cyber authorities, have issued…
Read More »
December 3, 2025

Threat Actors Using Matanbuchus Downloader to Deliver Ransomware and Maintain Persistence

Threat actors are increasingly abusing the Matanbuchus malicious downloader as a key enabler for hands-on-keyboard ransomware operations, using its backdoor-like…
Read More »
December 2, 2025

DevilsTongue Spyware Targets Windows Users Across Multiple Countries

Researchers at Insikt Group have uncovered new infrastructure linked to multiple operational clusters associated with Israeli spyware vendor Candiru, revealing…
Read More »
December 1, 2025

APT36 Deploys Python-Based ELF Malware in Targeted Attacks on Indian Government Agencies

Pakistan-linked cyberespionage group APT36 (Transparent Tribe) has escalated its campaign against Indian government institutions with the deployment of sophisticated Python-based…
Read More »
November 26, 2025

Cobalt Strike 4.12 Adds New Injection, UAC Bypasses & C2 Features

Fortra has officially released Cobalt Strike 4.12, introducing a comprehensive suite of new features designed to enhance red team operations and…
Read More »
November 25, 2025

Microsoft Warns of Security Risks in New Agentic AI Feature

Microsoft is sounding the alarm on critical security considerations as it introduces agentic AI capabilities to Windows through experimental features…
Read More »
November 22, 2025

Advanced Features Bypass AI Detection and Steal Password Manager Data

The Python-based information-stealing tool Xillen Stealer has reached versions 4 and 5, significantly expanding its targeting capabilities and functionality across…
Read More »
November 12, 2025

AppleScript Used to Deliver macOS Malware Disguised as Zoom & Teams Updates

Since Apple removed the popular “right-click and open” Gatekeeper override in August 2024, threat actors have shifted their tactics to…
Read More »
November 11, 2025

Microsoft Patch Tuesday for November 2025

CVE-2025-62199 Microsoft Office Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Remote Code Execution…
Read More »
November 11, 2025

Android Users Hit by Malware Disguised as Relaxation Programs

A sophisticated new cyberattack targeting Android devices in South Korea has been uncovered, leveraging Google’s asset-tracking feature, Find Hub, to…
Read More »
November 8, 2025

Threat Actors Use Stolen RDP Credentials to Deploy Cephalus Ransomware

A new ransomware group, Cephalus, has emerged in the cybersecurity threat landscape, targeting organizations through compromised Remote Desktop Protocol (RDP)…
Read More »
November 7, 2025

Over 15 Malicious npm Packages Exploiting Windows to Deploy Vidar Malware

Datadog Security Research has uncovered a sophisticated supply chain attack targeting the npm ecosystem, involving 17 malicious packages across 23…
Read More »

Previous page Next page