Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade detection and gain trust.
Researchers found a LinkedIn phishing campaign delivering a remote access trojan via DLL sideloading, WinRAR SFX files, and ...
A malicious extension impersonating an ad blocker forces repeated browser crashes before pushing victims to run ...
A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the ...
The attack consists of a NexShield malicious browser extension, a social engineering technique to crash the browser, and a ...
Explore different methods for authenticating devices on a network, from hardware addresses to advanced certificate-based ...
New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations.
Officials of Ukraine's Defense Forces were targeted in a charity-themed campaign between October and December 2025 that delivered backdoor malware called PluggyApe.
ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...
Learn how to integrate Quantum-Safe HSMs with Model Context Protocol (MCP) to secure AI infrastructure against Shor's algorithm and context injection.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results