SHADOW#REACTOR is a malware campaign using VBS, PowerShell, and MSBuild to stealthily deploy Remcos RAT with persistent ...

GootLoader malware is abusing malformed ZIP archives that bypass common tools like WinRAR & deliver JavaScript payloads via ...

Securonix has published a blog giving details of a new multi-stage Windows malware campaign it calls SHADOW#REACTOR. Its goal is to deploy the Remcos RAT ...

A ransomware operation known as DeadLock has been observed abusing Polygon blockchain smart contracts to manage and rotate ...

Cybersecurity researchers are becoming interested in a newly discovered ransomware strain called DeadLock that abuses Polygon smart contracts to silently service its infrastructure and bypass ...

DeadLock ransomware relies on Polygon smart contracts to spin proxy servers to produce a nearly unshuttable infrastructure.

Threat actors are using the social engineering technique to deploy the DCRat remote access Trojan against targets in the hospitality sector.

Iran-linked advanced persistent threat group MuddyWater has deployed a Rust-based implant in an ongoing espionage campaign ...

Microsoft has started rolling out new Secure Boot certificates that will automatically install on eligible Windows 11 24H2 ...

Microsoft is finally allowing users to remove, not just disable, the less popular AI feature Copilot from Windows 11 PCs, a change spotted in the latest beta version.

Hackers have deployed a Rust-based RAT via spear-phishing Word docs, targeting diplomatic, maritime, financial, and telecom ...

SHADOW#REACTOR is a multi-stage Windows malware campaign that stealthily deploys the Remcos RAT using complex infection ...