Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
DevPro Journal

Protecting your users from the 2026 wave of AI phishing kits

Discover why ISVs must implement identity-centric security and phishing-resistant MFA to stay ahead of modern AI-powered ...
The Hacker News

UAC-0050 Targets European Financial Institution With Spoofed Domain and RMS Malware

Russia-linked UAC-0050 targeted a European financial institution using a spoofed Ukrainian domain to deploy RMS remote access malware.