Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

Researchers found a LinkedIn phishing campaign delivering a remote access trojan via DLL sideloading, WinRAR SFX files, and ...

The additions let data teams ask progressive, context‑aware questions in natural language while enabling developers to deploy governed analytics agents across applications via unified API endpoints.

安全专家披露了一项活跃的恶意软件攻击活动，攻击者利用开源c-ares库中合法二进制文件的DLL侧加载漏洞，绕过安全控制并传播多种商业木马和窃取程序。攻击者将恶意libcares-2.dll与合法的已签名ahost.exe配对执行代码，绕过传统签名防护。此次攻击分发了Agent Tesla、CryptBot、Formbook等多种恶意软件，主要针对石油天然气、进出口等行业的财务、采购等岗位员工。

Researchers studying cybersecurity have discovered a new and sophisticated phishing effort that spreads dangerous payloads ...

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations.

【本文由小黑盒作者@周铁男是我于01月17日发布，转载请标明出处！】 今天看到火绒团队发的《银狐后门：Python库压缩包篡改与Chrome伪装攻击分析》后，感觉这里用到了一种很新奇的方法，于是我做了复现，顺便分享给大家共同学习 这里我结合这几年兴起的无文件攻击手段来植入后门（后门就是哆啦A梦的任意门，来去自如） ...

Google DeepMind has introduced Agentic Vision in Gemini 3 Flash, a new capability that changes how the model understands ...

I'm sorry NixOS, I've failed you.

The Python-based information stealer SolyxImmortal uses legitimate APIs and libraries for stealthy data gathering and ...

今天真是国产大模型打架的一天！昨晚千问上新模型，今天 DeepSeek 开源 OCR 2。 中午，Kimi 也开卷，网站、App、API 开放平台和编程助手产品 Kimi Code 模型版本全面更新，Kimi K2.5 来了。

A worker searching for an adblocker ended up installing malware instead after threat actor KongTuke pushed a fake Chrome ...