1d ago · 7 min read · Executive Summary In late February 2026, Microsoft Defender Experts detected a sophisticated attack campaign leveraging WhatsApp to distribute malicious Visual Basic Script (VBS) files to Windows user
Join discussion
3d ago · 40 min read · TL;DR — Read This First On March 19, 2026 at approximately 17:43 UTC, threat actor group TeamPCP silently redirected trivy-action@0.34.2 — a real, trusted release already running in thousands of CI/CD
Join discussion
2d ago · 6 min read · You run npm install. It’s muscle memory at this point. Dependencies resolve. Progress bar moves. Nothing unusual. 1.1 seconds later — your machine has already made an outbound call to a command-and-co
Join discussion
5d ago · 4 min read · In February 2026, security researcher Jamieson O'Reilly published an experiment that broke ClawHub's trust model wide open. He created a backdoored skill, used bots to inflate its download count to 4,000+, and made it the #1 most downloaded skill on ...
Join discussionMar 23 · 6 min read · Introduction Zscaler published a blog post about a new malware called SnappyClient, written in the C++ programming language. The malware communicates with its C&C server using a custom binary protocol
Join discussionMar 25 · 6 min read · Overview Recently, cybersecurity researchers have released details about ZeroDayRAT, a new generation mobile spyware platform being openly sold on Telegram. It has real-time spying capabilities, data
Join discussion
Mar 25 · 7 min read · Introduction In December 2025, researchers from Zscaler ThreatLabz discovered a new cyberattack campaign linked to the APT37 group—also known as ScarCruft, Ruby Sleet, and Velvet Chollima—a hacker gro
Join discussion
Mar 20 · 23 min read · In June 2010, a Belarusian security firm received a routine support request. A client's Windows PC kept crashing with the infamous Blue Screen of Death. Malware analyst Sergey Ulasen dug in, expecting
Join discussion
Mar 14 · 20 min read · The Malware-as-a-Service (MaaS) model, and its readily available scheme, remains to be the preferred method for emerging threat actors to carry out complex and lucrative cyberattacks. Information thef
FDPSyed and 2 more commented
