StealC malware campaign exploits fake CAPTCHA pages to steal sensitive data while blending into normal system activity.

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.

Endpoint protection and response platforms cover everything from AI-powered ransomware detection to insider risk monitoring.

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Malware researchers found a serious security vulnerability plaguing Microsoft's latest AI-enhanced version of its plain-text ...

IT admins will be busy this month patching Microsoft software and apps, but not nearly as busy as they were in January.

Workforce monitoring software was abused in two cases of attempted ransomware attacks, researchers from Huntress found.

Microsoft patches 58 vulnerabilities, including six actively exploited zero-days across Windows, Office, and RDP, as CISA sets a March 3 deadline.

A threat actor is using Net Monitor for Employees and SimpleHelp to launch ransomware and cryptocurrency attacks.

The vulnerability comes from the way Notepad handles Markdown hyperlinks. Attackers craft malicious .md files with embedded ...

Microsoft has patched six exploited zero-days in February 2026 Patch Tuesday, addressing 58 vulnerabilities and triggering urgent enterprise remediation.

Microsoft has patched the Windows Notepad remote code execution vulnerability CVE-2026-20841, warning users to install February 2026 updates to block exploits.