Researchers detail REF8372, a malvertising campaign using fake Node.js ads, Storj-hosted payloads, and OXLOADER to deploy ...

New analysis shows the campaign, which uses compromised WordPress sites, may be linked to the ransomware and extortion group Vice Society.

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade endpoint detection and response (EDR) solutions. Tool and payload development ...

Cato Networks tracked Poisson using OpenSSH and Tailscale to maintain access after Havoc C2 outage in a 33-day intrusion.

ShadowPad, once linked mainly to APT41, is now being used by multiple China-linked threat groups, expanding its role in cyber ...

If you have searched for how to install Claude Code, Cline, JetBrains, or any other popular AI development tool since March 2026, you may have landed on one of the most technically sophisticated ...

Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to external operations ...

A buffer overflow happens when a program writes more data into a memory buffer than the buffer can hold. The extra bytes land in adjacent memory, corrupting whatever was there. If an attacker controls ...

Russia-linked attackers are already exploiting Microsoft's latest Office zero-day, with Ukraine's national cyber defense team warning that the same bug is being used to target government agencies ...

Nextcloud CEO: Open source moves from 'a nerdy audience' to the geopolitical stage Frank Karlitschek, head of the German software vendor, talked about the company’s decision to help develop the ...

安全方向独家内容：Shellcode 编写、栈溢出原理、逆向分析入门。 从 Hello World 到漏洞利用，安全研究者的必修课。 Learn x86 Assembly from scratch in 18 lessons. Covers registers, memory addressing, stack frames, calling conventions, interrupts.