A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

You don't have to put up with Windows 11's worst features. Here's how I replaced the Start menu, taskbar, widget panel, and ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

A newly documented BlankGrabber infection chain is using a bogus “certificate” loader to disguise a multi-stage Windows compromise, adding another layer of deception to a commodity stealer already ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

When Microsoft patched a vulnerability last summer that allowed threat actors to use Windows’ shortcut (.lnk) files in exploits, defenders might have hoped use of this tactic would decline. They were ...

Attackers abused a signed but long-revoked EnCase Windows kernel driver in a BYOVD attack to terminate all security tools. In a recent incident, attackers abused a legitimate but vulnerable Windows ...

Threat actors are using a forensic tool's Windows kernel driver to kill security products, despite the fact the driver's digital certificate was revoked more than a decade ago. In a blog post ...

ThioJoe compares EXE and MSI files to reveal which Windows installer is best to use. Mamdani’s 'white supremacist' comment after terrorist attack draws MAGA backlash The grim choice facing the Trump ...