Windows, antivirus engines, and enterprise security tools all expect executables to be digitally signed. Previously, developers purchased an EV Code Signing Certificate, stored it on a USB token or ...

Active malware exploits DLL side-loading in a signed GitKraken binary to deliver trojans, stealers, and remote access malware ...

Hackers are exploiting a side-loading flaw in a signed GitKraken executable to bypass defenses and deploy trojans, stealers, ...

Trend Micro patched a critical Apex Central on-prem Windows flaw (CVE-2025-69258) with CVSS 9.8 that allows remote code ...

The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade ...

Threat actors are using the social engineering technique to deploy the DCRat remote access Trojan against targets in the hospitality sector.

Windows 11 KB5074109 causes a black screen on some PCs, including those with an Nvidia GPU, and also freezes Outlook if you ...

Japanese cybersecurity software firm Trend Micro has patched a critical security flaw in Apex Central (on-premise) that could allow attackers to execute arbitrary code with SYSTEM privileges.

A new ClickFix social engineering campaign is targeting the hospitality sector in Europe, using fake Windows Blue Screen of ...

Multi-stage malware campaign targets hospitality organizations using social engineering and abuse of MSBuild.exe ...

SHADOW#REACTOR is a multi-stage Windows malware campaign that stealthily deploys the Remcos RAT using complex infection ...

The CISA KEV catalog was expanded with 245 vulnerabilities in 2025, including 24 flaws exploited by ransomware groups.