Hiding in imposter sites, GitHub downloads, and YouTube links, this infostealer is designed to hijack accounts and drain ...

Security researchers at Malwarebytes have found a fake Windows 11 24H2 update campaign that steals sensitive data from ...

From eerie pixelated beginnings to the nightmarish adaptations of 2024, SONIC.EXE has captivated horror fans and gamers alike ...

Minecraft master Shark ventures into a cursed Minecraft.exe world filled with terrifying anomalies.

Claude’s rapid growth—nearly 290 million web visits per month—has made it an attractive target for attackers, and this campaign shows how easy it is to fall for a fake site. We discovered a fake ...

A website posing as a legitimate Anthropic Claude domain was caught serving a remote access trojan to its visitors, Malwarebytes reports. Relying on Claude’s popularity, a threat actor created a site ...

Three proof-of-concept exploits are being used in active attacks against Microsoft's built-in security platform; two are ...

The Chinese state-sponsored cyber threat is known for moving fast and trying odd attack vectors; now it's branching out in ...

CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.

A new malware family named 'AgingFly' has been identified in attacks against local governments and hospitals that steal ...

CPUID breach served STX RAT via trojanized CPU-Z downloads on April 9–10, impacting 150+ victims and multiple industries.

A new Lua-based malware, called LucidRook, is being used in spear-phishing campaigns targeting non-governmental organizations and universities in Taiwan.