If you had walked onto a trading floor thirty years ago, you would have heard noise before you saw anything. Phones ringing, ...

VOID#GEIST malware campaign delivers XWorm, AsyncRAT, and Xeno RAT using batch scripts, Python loaders, and explorer.exe ...

New hacking cluster exploits web servers and Mimikatz to infiltrate Asian infrastructure for long-term espionage in aviation, ...

Something else to worry about.

An undefined Chinese-speaking actor wields a combo of custom malware, open source tools, and LOTL binaries against Windows ...

Referenzen: https://www.cve.org/CVERecord?id=CVE-2026-0865 https://www.cve.org/CVERecord?id=CVE-2025-15367 https://www.cve.org/CVERecord?id=CVE-2026-1299 ...

Worried about creating operating system independent programs in Python? The os module is Python's direct line to your operating system. Think of it as the Swiss Army knife for everyday tasks related ...

Savvy developers are realizing the advantages of writing explicit, consistent, well-documented code that agents easily understand. Boring makes agents more reliable.

网络安全研究人员披露了一项多阶段恶意软件攻击活动，该活动使用批处理脚本作为传播路径，投放XWorm、AsyncRAT和Xeno RAT等加密远程访问木马载荷。攻击链被命名为VOID#GEIST，通过混淆批处理脚本部署第二阶段脚本，植入合法Python运行时，并解密加密的shellcode。现代恶意软件越来越多地转向复杂的基于脚本的传播框架，模仿合法用户活动以规避检测。

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.

对绝大多数普通个人用户来说，这只全网吹爆的 “小龙虾”，不是能帮你干活的数字员工，而是一个吞金、闯祸、还带安全风险的祖宗。你以为用了它就能告别加班、躺平摸鱼，结果是花了钱、费了时间、担了风险，最后活还是得你自己干。

Microsoft has released its March 2026 Patch Tuesday, fixing 84 vulnerabilities including two zero-days, 8 critical CVEs, and an AI-discovered CVSS 9.8 RCE flaw.