The cross-platform shell that nobody expected to take seriously.

If BitLocker is asking for Recovery Key after Windows Update, and you don't have the BitLocker Recovery Key, see this post ...

Two phishing campaigns, each using a different stealthy infection technique, are targeting organizations in attacks which aim ...

A digitally signed adware tool has deployed payloads running with SYSTEM privileges that disabled antivirus protections on ...

PowMix targets Czech workforce since Dec 2025 using jittered C2 and ZIP phishing, enabling stealthy remote access and ...

TL;DR  Introduction   In my previous blog post, I wrote about finding your path into DFIR; how to get started, where to focus ...

The Computer Emergencies Response Team of Ukraine (CERT-UA) has disclosed details of a new campaign that has targeted ...

Microsoft is warning of threat actors increasingly abusing external Microsoft Teams collaboration and relying on legitimate ...

A signed software operation linked to a company called Dragon Boss Solutions LLC has reportedly been silently disabling ...

CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.

The default Windows terminal experience is bad, but it doesn't have to be.

Two separate phishing campaigns are hitting organisations with Formbook, a long-running information stealer that continues to adapt its delivery methods to slip past traditional Windows defences. The ...