Storm-0249 now employs ClickFix, fileless PowerShell, and DLL sideloading to gain stealthy access that enables ransomware ...

Research shows a .NET proxy design flaw enables file writes and RCE through attacker-supplied WSDL in multiple products.

Splunk for Windows has a high-severity flaw that lets local users escalate privileges through misconfigured file permissions.

Cybersecurity researchers from Bitdefender have discovered that a fake torrent file of Leonardo DiCaprio’s new film, One Battle After Another, hides a complex series of scripts designed to infect ...

Over 77,000 Internet-exposed IP addresses are vulnerable to the critical React2Shell remote code execution flaw (CVE-2025-55182), with researchers now confirming that attackers have already ...

After noticing a spike in detections involving what looked like a movie torrent for One Battle After Another, Bitdefender researchers started an investigation and discovered that it was a complex ...

Microsoft is building Copilot into every product it owns, while Google is integrating its Gemini LLM tool into all of its ...

In a nutshell, UBI is a small Rust program that installs binaries from GitHub or GitLab. Software developers don't just ...

Water Saci has upgraded its self-propagating malware to compromise banks and crypto exchanges by targeting enterprise users ...

A custom loader initiated the vulnerable driver, located targeted endpoint detection services then issued kernel-level ...

The initial access broker has been weaponizing endpoint detection and response (EDR) platforms and Windows utilities in ...

KB5072033 addresses vulnerabilities across Windows systems and Office applications—including one actively exploited zero-day.