Attackers used “technical assessment” projects with repeatable naming conventions to blend in cloning and build workflows, retrieving loader scripts from remote infrastructure, and minimizing on-disk ...

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

SmartLoader campaign spreading StealC via a trojanized Oura MCP server using fake GitHub forks to steal credentials and ...

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

Pre-Christmas campaign donates £0.07 for every download of SoftMaker’s free office packages for Windows, Linux and Android 16 th December 2015, London – SoftMaker has launched its pre-Christmas 2015 ...

In January 2026, Microsoft Defender Experts identified a new evolution in the ongoing ClickFix campaign. This updated tactic deliberately crashes victims’ browsers and then attempts to lure users into ...

The scripts are meant to be executed in a certain order. Folders and subfolders will be created automatically. Here I will describe each script in the intended order of execution: 1- ...

Restricted Content Downloader: An advanced Telegram bot script to download restricted content such as photos, videos, audio files, or documents from Telegram private chats or channels. This bot can ...

Kaspersky Threat Research has revealed its analysis of RenEngine, a malware loader that has recently gained public attention. Kaspersky identified RenEngine samples as early as March 2025, with its ...