PowerShell's scripting language and ability to interact directly with Windows system elements give it a superpower that ...

The cross-platform shell that nobody expected to take seriously.

Attackers aren't breaking into your house; they’re using your own spare key to hide in plain sight. We need to stop assuming ...

The multi-stage campaign targeting South Korea uses weaponized Windows shortcuts and GitHub-based command and control to evade detection.

UAT-10362 spear-phishing targets Taiwanese NGOs in October 2025, deploying LucidRook malware for data exfiltration and ...

The Computer Emergencies Response Team of Ukraine (CERT-UA) has disclosed details of a new campaign that has targeted ...

CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.

The CPU-Z And HWMonitor installers being compromised is notable because a user could do everything correctly and still get pwned.

Two separate phishing campaigns are hitting organisations with Formbook, a long-running information stealer that continues to adapt its delivery methods to slip past traditional Windows defences. The ...

MSBuild, a legitimate Microsoft build tool embedded in many Windows and developer environments, is drawing renewed scrutiny after fresh threat research showed how attackers are using it to run ...