North Korea-linked ScarCruft’s Ruby Jumper uses Zoho WorkDrive C2 and USB malware to breach air-gapped systems for ...

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign ...

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

Microsoft warns of a campaign on chat platforms where attackers slip malware to victims as supposed gaming tools.

North Korean hackers are deploying newly uncovered tools to move data between internet-connected and air-gapped systems, spread via removable drives, and conduct covert surveillance.

A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was ...

Microsoft rolls out Windows 11 Insider builds featuring a built-in network speed test, Emoji 16.0, shared audio controls, and stronger batch file security.

MuddyWater’s Operation Olalampo targets MENA with GhostFetch, CHAR, HTTP_VIP, and AI-assisted malware since Jan 26, 2026.

A ransomware group has been using legitimate employee monitoring and remote support software to infiltrate corporate systems, according to new research.

A fresh Windows install looks clean, but it doesn’t feel right until this app shows up.

I’m a traditional software engineer. Join me for the first in a series of articles chronicling my hands-on journey into AI ...

Why copying and pasting isn't a real backup: The danger of 'silent' data corruption ...