Microsoft

ClickFix campaign uses fake macOS utilities lures to deliver infostealers

Threat actors are targeting macOS users with fake utility fixes that trick them into running malicious Terminal commands.

Backdoored PyTorch Lightning package drops credential stealer

A malicious version of the PyTorch Lightning package published on the Python Package Index (PyPI) delivers a ...
Microsoft

Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTM token compromise

Microsoft Defender Research observed a large-scale credential theft campaign that exemplifies this trend, using code of ...
The Hacker News

Silver Fox Deploys ABCDoor Malware via Tax-Themed Phishing in India and Russia

Silver Fox spreads ABCDoor via 1,600 phishing emails in 2026 targeting India and Russia, enabling data theft and remote ...
IEEE

Machine Learning-Enhanced Malware Obfuscation and Innovative Defense Strategies

Abstract: In the evolving landscape of sustainable digital technologies, safeguarding cyber-ecosystems has become a critical priority. Traditional machine learning-based malware detection systems are ...
Bleeping Computer

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on Hugging Face Spaces. Attacks leveraging the remote code ...
IEEE

Federated Contrastive Learning for Malware Detection in Encrypted Network Traffic

Abstract: Malware detection is made much more difficult when detecting encrypted traffic because many of the protocols that are used to encrypt the traffic (such as TLS, QUIC, and VPN tunneling) ...