The Hacker News

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

Suspected Russian actor deploys CANFAIL malware via phishing, targeting Ukrainian defense, energy, and aid sectors using LLM-assisted lures.

LummaStealer infections surge after CastleLoader malware campaigns

A surge in LummaStealer infections has been observed, driven by social engineering campaigns leveraging the ClickFix technique to deliver the CastleLoader malware.
Cybernews

Scam on steroids: fake PDFs now hide on decentralized web and mount as virtual drives

A complex phishing campaign uses decentralized fake PDFs that mount virtual drives to silently install the AsyncRAT malware.
MUO on MSN

I run this one PowerShell script on every Windows install, and it changes everything

It's free and open-source.
Business.com on MSN

How to create a web scraping tool in PowerShell

Web scraping tools gather a website's pertinent information for you to peruse or download. Learn how to create your own web ...

De-Enshittify Windows 11: Start Fresh with a New Install of Windows 11 ⭐

This process is called a clean install, which is ironic as there's nothing particularly clean about it: Microsoft has enshittified Windows Setup.
CSO Online

Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection

The campaign exploits an Office vulnerability to deliver the modular XWorm RAT, chaining HTA, PowerShell, and in-memory .NET execution to sidestep detection and expand post-compromise control.
SecurityWeek

RATs in the Machine: Inside a Pakistan-Linked Three-Pronged Cyber Assault on India

India is being targeted by multiple espionage campaigns delivered by the Pakistan-attributed Transparent Tribe (aka APT36).
CyberGuy

Fake ad blocker breaks PCs in new malware extension scam

A fake ad-blocking browser extension is deliberately crashing Chrome and Edge to trick users into running malware on their own PCs.