A fileless malware framework has been abusing Google's Blogspot platform to deliver the PureLog Stealer entirely in memory, letting attackers steal credentials while leaving few traces on disk.
Prinz Eugen ransomware targets recently modified files first and skips ransom notes, exposing backup, EDR, and incident ...
JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
Separate but similar campaigns described by Microsoft and Trend Micro use malicious zip files to spread malware via social ...
On June 24, 2026, Microsoft’s Digital Crimes Unit (DCU) facilitated the takedown, suspension, and blocking of domains that ...
A wave of phishing emails sent to Booking.com partner accommodations in Japan in May led to blockchain-hosted malware ...
Law enforcement dismantled 326 servers and 142 domains tied to Amadey and StealC, recovering 27 million stolen credentials.
Researchers found attackers using fake CAPTCHA pages. Users should never run PowerShell or Windows commands requested by ...
Microsoft says it has detected new self-propagating malware that spreads through USB drives in search of cryptocurrency ...
A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
Researchers tracked a seven-week campaign that leveraged trusted platforms and AI-generated trust to trick users into ...
Microsoft has identified Crypto Clipper, a self-propagating malware that spreads via USB drives, stealing cryptocurrency ...