Attackers are increasingly abusing legitimate system utilities and widely used administrative tools to deliver malware, move through networks and avoid detection, forcing security teams to rethink ...

Bitdefender security researchers have discovered that attackers continue to exploit Microsoft HTML Application Host (MSHTA), a legacy utility available by default on Windows systems that can execute ...

Increasingly, cyberattacks no longer rely on sophisticated malware exploits or zero-day vulnerabilities. Instead, they depend on something far more predictable and much easier to exploit: people ...

On March 31, 2026, two new npm packages for updated versions of Axios, a popular HTTP client for JavaScript that simplifies making HTTP requests to a REST endpoint with over 70 million weekly ...

Immediately after setting up Windows, you need to configure settings such as 'disable tracking' and 'install WSL' to create your preferred environment. However, it's tedious to go through Windows' ...

description: The following analytic detects the use of the `Set-ADAccountControl` PowerShell cmdlet with parameters that disable Kerberos Pre-Authentication. It leverages PowerShell Script Block ...

WebJEA allows you to dynamically build web forms for any PowerShell script. WebJEA automatically parses the script at page load for description, parameters and validation, then dynamically builds a ...

Unlike traditional attacks that rely on exploits, this succeeds through social engineering combined with abuse of Windows’ own security architecture. A sophisticated new malware campaign is ...

Over 77,000 Internet-exposed IP addresses are vulnerable to the critical React2Shell remote code execution flaw (CVE-2025-55182), with researchers now confirming that attackers have already ...

Threat hunters have uncovered similarities between a banking malware called Coyote and a newly disclosed malicious program dubbed Maverick that has been propagated via WhatsApp. According to a report ...