CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

Researchers discovered a vulnerable driver embedded in Black Basta's ransomware, illustrating the increasing popularity of ...

By tapping the unusual .scr file type, attackers leverage "executables that don't always receive executable-level controls," ...

Microsoft links SolarWinds WHD exploits to RCE, lateral movement, and domain compromise in multi-stage attacks.

Microsoft kills another stock Windows app, changes to OneDrive plans, new Windows 11 builds, and more in this week's ...

Microsoft's Defender Security Research Team has observed threat actors actively exploiting internet-exposed SolarWinds Web Help Desk instances in multi-stage intrusions that led to lateral movement ...

Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native ...

So many CVEs, so little time Digital intruders exploited buggy SolarWinds Web Help Desk (WHD) instances in December to break into victims' IT environments, move laterally, and steal high-privilege ...

Too slow react-ion time Baddies are exploiting a critical bug in React Native's Metro development server to deliver malware ...

Hackers are increasingly targeting macOS users with social engineering and infostealers, Microsoft warns.

Threat actors are exploiting the Metro4Shell React Native vulnerability to deploy malware on Linux and Windows systems.

Microsoft has been steadily reframing its identity from software giant to security-first cloud platform. Recent changes ...