Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native to deliver malicious payloads for Windows and Linux.

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to distribute credential‑stealing payloads.

A security audit found 341 malicious ClawHub skills abusing OpenClaw to spread Atomic Stealer and steal credentials on macOS ...

Infrastructure delivering updates for Notepad++—a widely used text editor for Windows—was compromised for six months by ...

Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...

Linux is winning the productivity war. From seamless updates to a better way to install apps, here are the features I wish ...

The modular Windows RAT uses in-memory execution and live operator control to maintain persistence and exfiltrate sensitive ...

With the CLI tool winapp, Microsoft wants to simplify Windows development for cross-platform developers. It handles SDK ...

Launch multiple apps at once, clear temporary files, and more.

Microsoft has released an emergency patch for CVE-2026-21509, a zero-day Office vulnerability under active exploitation that ...

This is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ...

An espionage campaign targets Indian users via phishing emails spoofing the Income Tax Department, delivering a weaponized ...