The CPU-Z And HWMonitor installers being compromised is notable because a user could do everything correctly and still get pwned.

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain. The attack typically begins when a victim downloads a business-themed ZIP ...

As enterprises rely more heavily on AI technologies and services, attackers’ living-off-the-land techniques have evolved to ...

CrowdStrike is investing to provide ‘foundational’ platforms for solution and service provider partners to fully capitalize ...

DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...

Keep each script version focused on a single change type (patches for fixes, minors for features, majors for breaking changes). Retain all prior versions and never modify an existing release; copy to ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

You can wrap an executable file around a PowerShell script (PS1) so that you can distribute the script as an .exe file rather than distributing a “raw” script file. This eliminates the need to explain ...

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.

A new info-stealing malware called Torg Grabber is stealing sensitive data from 850 browser extensions, more than 700 of them for cryptocurrency wallets. Initial access is obtained through the ...

The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects systems configured for Iran. The threat actor is responsible for the recent ...