A worker searching for an adblocker ended up installing malware instead after threat actor KongTuke pushed a fake Chrome ...

The attack consists of a NexShield malicious browser extension, a social engineering technique to crash the browser, and a ...

A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the ...

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...

Researchers uncovered a CrashFix campaign where a fake Chrome ad blocker crashes browsers to trick users into installing the ...

A new WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted ...

My favorite NotebookLM combination yet.

ENVIRONMENT: A cutting-edge Tech company in Durban wants you to join its team as its next Database Administrator where you will be responsible for the day-to-day administration, maintenance, ...

安全专家披露了一项活跃的恶意软件攻击活动，攻击者利用开源c-ares库中合法二进制文件的DLL侧加载漏洞，绕过安全控制并传播多种商业木马和窃取程序。攻击者将恶意libcares-2.dll与合法的已签名ahost.exe配对执行代码，绕过传统签名防护 ...

The phishing campaign shows how attackers continue to weaponize legitimate cloud services and open source tools to evade ...

2025年12月初，以色列政府官网（gov.il）悄然上线一则安全通告，标题直指一个代号为“MuddyWater”（泥水）的网络威胁组织。尽管页面内容因Cloudflare验证机制未能完整抓取，但结合多方情报与历史攻击模式，网络安全界迅速达成共识：这是一次针对国家关键部门的高危预警。 通告虽简，却如警钟长鸣——MuddyWater正以更狡猾的鱼叉式钓鱼手段，瞄准政府机构、国防承包商、能源与电信等核 ...

网络安全研究人员披露了一起新的网络攻击活动详情，该活动利用WhatsApp作为分发媒介，在针对巴西的攻击中传播名为Astaroth的Windows银行木马。 这次攻击活动被安客诺斯威胁研究部门命名为Boto Cor-de-Rosa。