PowerShellRun is a PowerShell module that lets you fuzzy search applications, utilities and functions you define and launch them with ease. It is a customizable launcher app on the PowerShell terminal ...

A worker searching for an adblocker ended up installing malware instead after threat actor KongTuke pushed a fake Chrome ...

The attack consists of a NexShield malicious browser extension, a social engineering technique to crash the browser, and a ...

A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the ...

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...

Researchers uncovered a CrashFix campaign where a fake Chrome ad blocker crashes browsers to trick users into installing the ...

A new WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted ...

My favorite NotebookLM combination yet.

Active malware exploits DLL side-loading in a signed GitKraken binary to deliver trojans, stealers, and remote access malware ...

The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade ...

Emoji is a little PowerShell module to help you work with Emoji. It is built from the Unicode Character Dataset, which includes 44120 named symbols.

网络安全研究人员披露了一项新的攻击活动，利用WhatsApp作为分发渠道在巴西传播名为Astaroth的Windows银行木马。该恶意软件会获取受害者的WhatsApp联系人列表，自动向每个联系人发送恶意消息以进一步传播感染。攻击者通过ZIP压缩包分发恶意脚本，包含Python传播模块和银行监控模块，前者自动转发恶意文件实现蠕虫式传播，后者持续监控受害者的网页浏览活动以窃取银行凭据。