Signed malware backed by a stolen EV certificate deployed legitimate RMM tools to gain persistent access inside enterprise ...

VOID#GEIST malware campaign delivers XWorm, AsyncRAT, and Xeno RAT using batch scripts, Python loaders, and explorer.exe ...

Learn how to clean up Active Directory before enabling SAML-based SSO to ensure secure authentication, accurate user mapping, and smooth identity integration.

Microsoft has identified a phishing campaign using malformed links to legitimate OAuth services to redirect to malware ...

North Korean hacking group APT37 was seen deploying new implants, backdoors, and other tools in attacks targeting air-gapped ...

While some of the campaigns have been found to leverage the technique to deliver malware, others send users to pages hosted on phishing frameworks such as EvilProxy, which act as an ...

Cybersecurity researchers identify five active threat groups using phishing, malware and influence tactics as cyber activity ...

A fake company bought a valid EV certificate, signed malware, and helped criminals keep remote access to enterprise PCs.

Microsoft uncovers OAuth phishing campaigns that abuse login redirects to deliver malware and steal credentials.

Crims hope for payday from malicious payloads rather than stealing access tokens Microsoft has warned organizations about ...

Hackers are abusing the legitimate OAuth redirection mechanism to bypass phishing protections in email and browsers to take ...

Threat groups are weaponizing industrial control access they’ve gained over the years, but critical infrastructure operators ...