From late April 2026 to mid-June 2026, Microsoft Defender Experts observed increased ACR Stealer activity across customer ...
Microsoft has observed a surge in attacks using the ACR Stealer malware to steal browser-stored passwords, authentication ...
A new malicious framework called OkoBot is delivering more than 20 payloads in attacks focused on stealing cryptocurrency ...
One of the Russian government’s most elite hacking groups has adopted an attack, known as Clickfix, to compromise devices ...
Gone in a heartbeat.
Microsoft and OEMs fixed key Secure Boot certificate issues for IT admins at a live office hours event, covering BIOS updates ...
New TELEPUZ malware spreads through ClickFix, then steals browser cookies, logs keystrokes, runs commands, and installs ...
The attack vector is available for rent at scale, and evades AV and EDR, leaving YARA analysis as the best detection option.
DNS testing is wonderful, but it can be a confusing mess.
Bitdefender researchers show how Windows bind links can create conflicting filesystem views to hide malware from endpoint ...
Windows 11 24H2, Office 2021, and SQL Server 2016 headline a long list of Microsoft products losing support in 2026. See the ...
ESET researchers discovered 11 vulnerable UEFI shim bootloaders signed by Microsoft that allow attackers to bypass UEFI ...