A new variant of the FileFix social engineering attack uses cache smuggling to secretly download a malicious ZIP archive onto a victim's system and bypassing security software.

Researchers expose new WordPress malware and ClickFix phishing kits exploiting cache smuggling for stealth attacks.

Malicious PyPI package soopsocks downloaded 2,653 times before takedown, exfiltrating Windows data to Discord.

A new campaign has been observed using malicious Windows shortcuts in credential-themed ZIP files to deploy PowerShell script ...

Akira’s ransomware-as-a-service operation has been highly active in seeking out Australian targets – here’s what network ...

Barracuda’s Managed XDR team recently mitigated an Akira ransomware attack that tried to evade detection by exploiting tools ...

The scripts nobody owns often end up running the most important parts of a business. Here’s how they take root and why ...

It’s a tale as old as time for PC users: you unbox your brand-new Windows laptop, excited by the promise of blazing-fast ...

Abstract: PowerShell is a widely utilized tool by both system administrators and attackers for performing complex management tasks and launching attacks. The detection of malicious scripts poses a ...

After the last FileFix attack that bypassed Windows MoTW, this new FileFix attack can download an infected image that executes StealC infostealer (similar to EDDIESTEALER) in PC memory. Since the ...

If your organization is experiencing issues connecting to the Azure Information Protection (AIP) service, don’t worry—you’re not alone. Many users face similar challenges, especially when dealing with ...