Gone in a heartbeat.
Bitdefender researchers show how Windows bind links can create conflicting filesystem views to hide malware from endpoint ...
Huntress 发现一个由 AI 生成的 PowerShell 脚本,用于 AD 侦察,表明攻击者正利用 AI 创建定制化、具备规避能力的工具。 2026 年 6 月 3 日,在一次事件响应调查中,Huntress 分析师 Jevon Ang 从一台被入侵的 Windows Server 中恢复了一个 PowerShell 脚本。攻击者曾使用该脚本绘制受害者 Active Directory 环 ...
Microsoft knew about the Windows 11 storage bug in May. The July 2026 security update finally fixes it but check your drive ...
The attack vector is available for rent at scale, and evades AV and EDR, leaving YARA analysis as the best detection option.
A likely AI-generated PowerShell script mapped Active Directory after an attacker gained RDP access to a Windows Server with ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
GDID is the persistent Windows ID that helped FBI trace a Scattered Spider hacker despite VPNs. Here's how it works and how ...
GigaWiper is a destructive backdoor that combines multiple wiping and ransomware-like capabilities into a single operational ...
A threat actor has been caught using AI-generated malware in a real network intrusion, deploying a PowerShell script that an ...
GodDamn ransomware, tied by Symantec to Hyadina's Beast lineage, uses AnyDesk, PsExec, and PoisonX to move and evade defenses ...