PowerShell can do far more than most users realize. Explore 10 hidden capabilities that save time, improve reporting, and supercharge your workflow.

North Korea-linked ScarCruft’s Ruby Jumper uses Zoho WorkDrive C2 and USB malware to breach air-gapped systems for ...

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.

Stop letting Windows dictate your workflow. Turn that cluttered Start Menu into a sleek, pinned-app-only space built for speed and privacy.

It's free and open-source.

ClickFix Campaign Abuses Compromised Sites to Deploy MIMICRAT Malware | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software ...

Windows 11 KB5077221 arrives in the Canary Channel with built-in Sysmon support and updated sharing features for Insiders.

I’ve had a complicated relationship with Windows 11. On the one hand, the UI improvements and Snap Layouts are really useful upgrades. On the other hand, the operating system feels increasingly like a ...

This process is called a clean install, which is ironic as there's nothing particularly clean about it: Microsoft has enshittified Windows Setup.

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign ...

ClickFix campaigns have adapted to the latest defenses with a new technique to trick users into infecting their own machines with malware.