Fake MAS Windows activation domain used to spread PowerShell malware

A typosquatted domain impersonating the Microsoft Activation Scripts (MAS) tool was used to distribute malicious PowerShell ...
WeLiveSecurity

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET researchers discovered a China-aligned APT group, LongNosedGoblin, which uses Group Policy to deploy cyberespionage ...
TechRepublic

Microsoft Silently Fixes 8-Year Windows Security Flaw

The flaw, tracked as CVE-2025-9491, allowed cybercriminals to hide malicious commands from users inspecting files through Windows' standard interface. We waited long enough. Image: Unsplash Microsoft ...
CSOonline

New ClickFix attacks use fake Windows Update screens to fool employees

CSOs and Windows admins should disable the ability of personal computers to automatically run commands to block the latest version of the ClickFix social engineering attacks. This advice comes from ...
cryptopolitan

Hackers use fake reCAPTCHA pop-ups to install malware and steal crypto

Hackers are deploying fake reCAPTCHA pop-ups to install Amatera Stealer malware, targeting crypto wallets and browser data. eSentire reports the rise of ClickFix-powered attacks delivering Amatera and ...
InfoWorld

North Korea’s ‘Job Test’ trap upgrades to JSON malware dropboxes

North Korea-linked Contagious Interview campaign is now luring developers with trojanized coding tasks and pulling obfuscated payloads from public JSON-storage services like JSON Keeper, JSONSilo, and ...
Morningstar

ExtraHop® Unveils Advanced Network Detection Capabilities to Stop Malicious PowerShell Attacks

ExtraHop®, a leader in modern network detection and response (NDR), today announced powerful new capabilities to detect the malicious use of PowerShell. These enhancements deliver the critical ...
winbuzzer.com

Chinese Hackers Exploit Unpatched Windows Zero-Day to Spy on European Diplomats

Manage all AI prompts from one structured library with WinBuzzer Prompt Station. Use prompt-chains, prompts, text insertions with ChatGPT, Gemini, Claude, Grok, AI Studio, Mistral. With versioning, ...
Forbes

Warning As Microsoft Windows Attacks Confirmed — No Patch Available

Windows users warned as ongoing attacks exploit CVE-2025-9491 — and there's currently no fix available from Microsoft. Updated November 2 with a statement from Microsoft regarding the newly reported ...
SecurityWeek

Russian APT Switches to New Backdoor After Malware Exposed by Researchers

Star Blizzard started using the NoRobot (BaitSwitch) and MaybeRobot (SimpleFix) malware after public reporting on the LostKeys malware. The Russian state-sponsored APT known as Star Blizzard has been ...
The New York Times

Comey’s Two Legal Challenges to His Indictment, Explained

A lawyer for the former F.B.I. director said he would accuse the Justice Department of malicious and selective prosecution and contend that a U.S. attorney was illegally appointed. By Charlie Savage ...
Infosecurity-magazine.com

Shortcut-based Credential Lures Deliver DLL Implants

A campaign that packages credential-themed ZIP archives with malicious Windows shortcut (.lnk) files has been tracked by cybersecurity researchers. The ZIP files promise certified documents, including ...