A newly discovered FileFix social engineering attack impersonates Meta account suspension warnings to trick users into ...

A rare in-the-wild FileFix campaign has been observed by cybersecurity researchers, which hides a second-stage PowerShell ...

You can wrap an executable file around a PowerShell script (PS1) so that you can distribute the script as an .exe file rather than distributing a “raw” script file. This eliminates the need of ...

Attackers are abusing legitimate remote access tools and lightweight scripts to deliver AsyncRAT entirely in memory, ...

Scripting is often seen as something only IT admins do to lengthen their coffee breaks, but home users can benefit from command line automation, too. Here are 10 PowerShell commands you can use to ...

FileFix phishing attack in June 2025 delivers StealC malware via Bitbucket images, bypassing detection with obfuscation.

ClickFix typically asks the victim to perform a fake CAPTCHA test. FileFix tricks the user into copying and pasting a command ...

A threat actor named WhiteCobra has targeting VSCode, Cursor, and Windsurf users by planting 24 malicious extensions in the ...

IntroductionAPT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima) is a North Korean-aligned threat actor active since at least 2012. APT37 primarily targets South Korean individuals ...

Windows doesn't include this functionality in its GUI because duplicate detection can be resource-intensive, especially for large files. Microsoft likely decided that most users wouldn't need this ...

TL;DR Why Discord appeals to attackers Discord has become an attractive tool for attackers not because it’s malicious, but ...

AttackIQ has updated the assessment template that emulates the various post-compromise Tactics, Techniques, and Procedures ...