Experts reveal Evelyn Stealer malware abusing VS Code extensions to steal developer credentials, browser data, and ...

A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the ...

This is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ...

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...

A new ClickFix attack has emerged to target clients of the hospitality sector using a multistage infection chain that combines typical fake captcha challenges with exploitation of the dreaded ...

A multi-stage phishing campaign targeting Russia abuses GitHub and Dropbox to disable Microsoft Defender and deploy Amnesia ...

DeadLock ransomware relies on Polygon smart contracts to spin proxy servers to produce a nearly unshuttable infrastructure.

Launch multiple apps at once, clear temporary files, and more.

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations. Boto Cor-de-Rosa campaign tracks delivery success.

The malicious activity is targeting organizations with software development teams that rely on VS Code and third-party ...

Microsoft announced that the Copilot Studio extension for the Visual Studio Code (VS Code) integrated development environment is now available to all users. Developers can use it to build and manage ...

The modular Windows RAT uses in-memory execution and live operator control to maintain persistence and exfiltrate sensitive ...