The Hacker News

Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT

VOID#GEIST malware campaign delivers XWorm, AsyncRAT, and Xeno RAT using batch scripts, Python loaders, and explorer.exe ...
CSO Online

Resumés with malicious ISO attachments are circulating, says Aryaka

The latest example is detailed by researchers at Aryaka, who this week described a campaign by an unnamed threat actor who is distributing resumés containing a malicious ISO file to HR departments. It ...
XDA Developers on MSN

I automated file organization with one PowerShell script

This simple script tamed my Downloads folder.
MUO on MSN

I stopped uploading PDFs to random sites and used this self-hosted PDF toolbox instead

I got tired of handing my PDFs to strangers, so I brought the tools home instead.
GitHub

PSWriteHTML - PowerShell Module

That's it. Whenever there's a new version you simply run the command and you can enjoy it. Remember, that you may need to close, reopen the PowerShell session if you have already used the module ...
The Hacker News

ThreatsDay Bulletin: OAuth Trap, EDR Killer, Signal Phishing, Zombie ZIP, AI Platform Hack & More

ThreatsDay: OAuth abuse, Signal hijacks, Zombie ZIP evasion, Teams malware, AI hack, RondoDox botnet, and more cyber stories.
CSO Online

ClickFix attackers using new tactic to evade detection, says Microsoft

Unwitting victims are now being tricked into installing malware via Windows Terminal, but some experts say this is old news. Regardless, they agree that infosec leaders need to educate employees about ...

APT37 hackers use new malware to breach air-gapped networks

North Korean hackers are deploying newly uncovered tools to move data between internet-connected and air-gapped systems, spread via removable drives, and conduct covert surveillance.
GitHub

Servy PowerShell Module

The Servy PowerShell Module allows you to manage Windows services easily using PowerShell. You can install, start, stop, restart, export/import configurations, check ...