Ransomware actors are ditching Cobalt Strike in favor of native Windows tools, as payment rates hit record lows and data ...
The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a ...
BlackSanta is a malware module that kills EDR and AV at the kernel level prior to unleashing the malware’s final purpose.
"Living Off the Land" attacks use built-in tools and processes instead of traditional malware.
ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users and developers.
China-linked CL-STA-1087 targets Southeast Asian militaries since 2020 using AppleChris and MemFun for espionage and credential theft.
The state-sponsored hackers deployed custom tools and stayed dormant in the compromised environments for months.
5d
FortiGate Edge Intrusions: Stolen Service Accounts Lead to Rogue Workstations and Deep AD Compromise
Throughout early 2026, SentinelOne’s Digital Forensics & Incident Response (DFIR) team has responded to several incidents where FortiGate Next-Generation Firewall (NGFW) appliances have been ...
Recent social engineering schemes involving WordPress and Microsoft’s Windows Terminal show that this relatively basic tactic is a growing threat.
How to check your Windows PC for expiring security certificates - a big one is ending soon ...
A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.
Those aren't toys. Malware used in a sophisticated spear-phishing and infostealing campaign by Russian bad actors includes a component dubbed BlackSanta that can shut down antivirus and EDR ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results