ClickFix attackers using new tactic to evade detection, says Microsoft

Unwitting victims are now being tricked into installing malware via Windows Terminal, but some experts say this is old news.
Windows Report

Microsoft to Stop Sending Teams Recording Expiration Emails Starting This June

Starting June 1, Microsoft will stop sending Teams meeting recording expiration emails. New settings let admins re-enable ...
Dark Reading

Less Lucrative Ransomware Market Makes Attackers Alter Methods

Ransomware actors are ditching Cobalt Strike in favor of native Windows tools, as payment rates hit record lows and data theft surges.
The Hacker News

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

Researchers link Silver Dragon APT to APT41 after attacks on government entities using Cobalt Strike, DNS tunneling, and Google Drive-based C2.

OpenAI Launches Codex Desktop App for Windows, Bringing AI Coding Agents to PC Developers

OpenAI has released its Codex desktop app for Windows, adding a native sandbox and PowerShell support, enabling developers to ...

OAuth phishers make ‘check where the link points’ advice ineffective

Microsoft has identified a phishing campaign using malformed links to legitimate OAuth services to redirect to malware downloads.

Microsoft warns of OAuth phishing campaigns able to bypass email and browser defenses

An OAuth feature is being abused in the wild to drop malware to people's computers.

If you’re into AI coding, OpenAI just puts its Codex on Windows

OpenAI has launched its Codex app on Windows, bringing a native AI coding assistant with project management, automations, and WSL support for developers. The post If you’re into AI coding, OpenAI just ...

Five Cyber Groups To Watch as Geo Political Tensions Rise: Research

Cybersecurity researchers identify five active threat groups using phishing, malware and influence tactics as cyber activity ...
The Hacker News

Multi-Stage VOID#GEIST Malware Delivering XWorm, AsyncRAT, and Xeno RAT

VOID#GEIST malware campaign delivers XWorm, AsyncRAT, and Xeno RAT using batch scripts, Python loaders, and explorer.exe ...

Russian hackers target HR departments with vicious new 'BlackSanta' malware

The malware is described as an 'EDR killer', stopping security solutions and suppressing notifications.