Fake MAS Windows activation domain used to spread PowerShell malware

A typosquatted domain impersonating the Microsoft Activation Scripts (MAS) tool was used to distribute malicious PowerShell ...

This SmarterMail vulnerability allows Remote Code Execution - here's what we know

Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to ...

Leonardo DiCaprio movie torrent hides complex PowerShell scripts

Fake movie torrents deliver multi-stage malware without the user noticing execution stepsAgentTesla steals browser, email, ...
InfoWorld

React2Shell: Anatomy of a max-severity flaw that sent shockwaves through the web

The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...

5 Raspberry Pi Projects That Can Replace Your Expensive Subscriptions

Subscription services are everywhere these days, and they only seem to get more expensive. Luckily, with a Raspberry Pi, you ...
The Hacker News

New ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary Emails

Kaspersky reports ForumTroll phishing attacks targeting Russian academics, using fake eLibrary emails, personalized files & Windows malware delivery.
Infosecurity Magazine

Monitoring Tool Nezha Abused For Stealthy Post-Exploitation Access

In this campaign, Nezha is deployed as a post-exploitation remote access tool rather than malware. Because the software is ...

Fake Windows update pushes malware in new ClickFix attack

The ClickFix campaign disguises malware as legitimate Windows updates, using steganography to hide shellcode in PNG files and bypass security detection systems.

Beware of the ‘ClickFix’ scam: Hackers trick Mac users to download infostealer tools

Hackers have launched a new malware campaign that uses paid Google search ads and shared conversations on the official ...
InfoWorld

React2Shell is the Log4j moment for front end development

Attackers are exploiting a Flight protocol validation failure that allows them to execute arbitrary code without ...
WeLiveSecurity

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET researchers discovered a China-aligned APT group, LongNosedGoblin, which uses Group Policy to deploy cyberespionage ...