UNC6692 has been attributed to a large email campaign that's designed to overwhelm a target's inbox with a flood of spam ...

PowMix targets Czech workforce since Dec 2025 using jittered C2 and ZIP phishing, enabling stealthy remote access and ...

Threat actors are abusing external Microsoft Teams collaboration to impersonate IT helpdesk staff and convince users to grant ...

Overview On April 15, NSFOCUS CERT detected that Microsoft released the April Security Update patch, fixing 165 security issues involving Windows, Microsoft Office, Microsoft SQL Server, Microsoft ...

Google Antigravity’s increasing popularity has brought the development platform into the crosshairs of researchers and ...

A cyber group is impersonating IT helpdesk staff via Microsoft Teams to deploy malware and target corporate systems.

CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.

A new malware family named 'AgingFly' has been identified in attacks against local governments and hospitals that steal ...

Microsoft’s April 2026 security update fixes 165 vulnerabilities across Windows, Office, and other products, including one actively exploited SharePoint flaw. The update also introduces a Windows 11 ...

TL;DR  Introduction   In my previous blog post, I wrote about finding your path into DFIR; how to get started, where to focus ...

Attackers are exploiting trust in Adobe’s brand to deliver covert remote access, using a fake Acrobat Reader download page to install ConnectWise ScreenConnect through a fileless, memory-heavy attack ...