A new variant of the FileFix social engineering attack uses cache smuggling to secretly download a malicious ZIP archive onto a victim's system and bypassing security software.

Researchers expose new WordPress malware and ClickFix phishing kits exploiting cache smuggling for stealth attacks.

Malicious PyPI package soopsocks downloaded 2,653 times before takedown, exfiltrating Windows data to Discord.

A new campaign has been observed using malicious Windows shortcuts in credential-themed ZIP files to deploy PowerShell script ...

Akira’s ransomware-as-a-service operation has been highly active in seeking out Australian targets – here’s what network ...

Barracuda’s Managed XDR team recently mitigated an Akira ransomware attack that tried to evade detection by exploiting tools ...

The scripts nobody owns often end up running the most important parts of a business. Here’s how they take root and why ...

It’s a tale as old as time for PC users: you unbox your brand-new Windows laptop, excited by the promise of blazing-fast ...

After the last FileFix attack that bypassed Windows MoTW, this new FileFix attack can download an infected image that executes StealC infostealer (similar to EDDIESTEALER) in PC memory. Since the ...

If your organization is experiencing issues connecting to the Azure Information Protection (AIP) service, don’t worry—you’re not alone. Many users face similar challenges, especially when dealing with ...

Microsoft is finally saying goodbye to PowerShell 2.0 — the 14-year-old command-line tool and scripting language that debuted alongside Windows 7 — as part of a broader effort to clean up legacy code ...