An emerging phishing campaign is exploiting a dangerous combination of legitimate Cloudflare services and open source Python tools to deliver the commodity AsyncRAT. The attack demonstrates threat ...

A report from ReversingLabs reveals a massive 73% increase in malicious open-source packages in 2025, with over 10,000 ...

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations.

Researchers found a LinkedIn phishing campaign delivering a remote access trojan via DLL sideloading, WinRAR SFX files, and ...

The Python-based information stealer SolyxImmortal uses legitimate APIs and libraries for stealthy data gathering and ...

The attack consists of a NexShield malicious browser extension, a social engineering technique to crash the browser, and a ...

Experts reveal Evelyn Stealer malware abusing VS Code extensions to steal developer credentials, browser data, and ...

Hackers are hunting for vulnerable endpoints to deploy Python malware.

A malicious extension impersonating an ad blocker forces repeated browser crashes before pushing victims to run ...

A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been present ...

Internet security watchdog Shadowserver tracks nearly 800,000 IP addresses with Telnet fingerprints amid ongoing attacks exploiting a critical authentication bypass vulnerability in the GNU InetUtils ...

The good news is that not clicking on unknown links avoids it entirely.