CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

ESET researchers present technical details on a recent data destruction incident affecting a company in Poland’s energy sector.

North Korean hacking group Konni is now targeting blockchain engineers with artificial intelligence-generated malware.

The North Korean hacker group Konni (Opal Sleet, TA406) is using AI-generated PowerShell malware to target developers and engineers in the blockchain sector.

1. DownloadAllMetadataAndFiles (Download metadata from users/queries to database and then download files) 2. DownloadAllMetadata (Download only metadata from users ...

Editor's take: Microsoft is doubling down on its plan to turn Windows 11 into an "agentic AI" platform, and in the process seems determined to strip away the last bits of user agency left in the OS.

This PoC community project provides a sample PowerShell script that collects Microsoft Entra ID permissions related to Temporary Access Passes (TAPs) and Passkeys (FIDO2 security keys or mobile ...

As part of the December 2025 Patch Tuesday Update for Windows 11 version 23H2, 24H2, and 25H2, Microsoft made some changes to PowerShell 5.1. So, if you came across a new security warning in Windows ...

Microsoft says Windows PowerShell now warns when running scripts that use the Invoke-WebRequest cmdlet to download web content, aiming to prevent potentially risky code from executing. As Microsoft ...