New ClickFix variant maps WebDAV drive to run trojanized WorkFlowy app, enabling stealth C2 beacon and payload delivery.

Microsoft has rolled out the Windows 11 February cumulative update, KB5077181, and early coverage paints it as a corrective release aimed at both security and day-to-day stability. Monthly rollups ...

A new malware strain dubbed Slopoly, likely created using generative AI tools, allowed a threat actor to remain on a compromised server for more than a week and steal data in an Interlock ransomware ...

IntroductionThreat actors often take advantage of major global events to fuel interest in their malicious activities. Zscaler ThreatLabz is diligently tracking a surge in cybercriminal activity that ...

Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.

In Vernor Vinge’s science fiction novel A Deepness in the Sky, one of the characters works as a software archaeologist, mining thousands of years of code and libraries to find the solutions to ...

A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was ...

网络安全研究人员披露了一个名为Slopoly的疑似人工智能生成恶意软件的详细信息，该恶意软件被名为Hive0163的经济动机威胁组织所使用。 IBM X-Force研究员Golo Mühr在与The Hacker News分享的报告中表示："尽管仍相对普通，但像Slopoly这样的AI生成恶意软件显示了威胁行为者如何轻松地将AI武器化，以极短时间开发新的恶意软件框架。" Hive0163的运营通过 ...

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

为智能时代立信，为创新价值护航。 —— 启明星辰 2026年3月，被誉为"增长最快的开源AI ...

网络安全研究人员发现了四个恶意NuGet包，专门针对ASP.NET网络应用开发者，旨在窃取敏感数据。 这一攻击活动由Socket公司发现，能够窃取ASP.NET身份数据，包括用户账户、角色分配和权限映射，同时操控授权规则在受害应用中创建持久性后门。