Weedhack malware targets Minecraft players via YouTube and SEO poisoning since Jan 2026, enabling credential theft and remote ...

A hardware fault injection attack results in the first Xbox One boot ROM-level compromise after 12 years.

A threat actor is using an AI-built ransomware attack toolkit that automates Active Directory discovery and helps evade ...

Fake Claude Code installer malware used Google Ads to place spoofed AI tool pages above real documentation since March 2026.

Critical flaw exposed: CVE-2026-0300 enables unauthenticated remote code execution with root privileges on certain Palo Alto firewalls via the User-ID Authentication Portal. Active exploitation ...

X.Org Server vulnerability patch released June 2 fixes nine flaws — eight found by TrendAI’s FENRIR static analysis tool, the ...

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...

I wanted to share this shellcode self-injection POC to showcase some AV/EDR evasion concepts that may turn useful for Red Teaming. Just a few weeks ago I came up with a custom in-memory evasion ...

Abstract: Advanced Persistent Threat (APT) attacks became a major network threat in recent years. Among APT attack techniques, sending a phishing email with malicious documents attached is considered ...

It is a shellcode loader that uses encryption to get around AV solutions such as Windows Defender. > The tool is composed of a generator (Shellcodeloader.exe) and numerous loader templates. There are ...

Abstract: Malicious document files used in targeted attacks often contain a small program called shellcode. It is often hard to prepare a runnable environment for dynamic analysis of these document ...

A threat actor has used artificial intelligence coding tools to build and refine malware intended to bypass endpoint detection and response systems, highlighting how generative AI is being folded into ...