North Korean group Konni uses AI-assisted PowerShell malware and phishing via Google ads and Discord to breach blockchain ...

A new malicious campaign mixes the ClickFix method with fake CAPTCHA and a signed Microsoft Application Virtualization (App-V ...

ClickFix uses fake CAPTCHAs and a signed Microsoft App-V script to deploy Amatera stealer on enterprise Windows systems.

This is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ...

KONNI is using AI-generated backdoors to target crypto bros ...

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

The North Korean hacker group Konni (Opal Sleet, TA406) is using AI-generated PowerShell malware to target developers and engineers in the blockchain sector.

Following their Salesforce attacks last year, the cybercrime group has broadened its targeting and gotten more aggressive with extortion tactics.

North Korean Konni hackers are now targeting blockchain developers and engineers with AI-generated malware.

Too slow react-ion time Baddies are exploiting a critical bug in React Native's Metro development server to deliver malware ...

A look at how different MCPs and AI agents can be targeted and how, in practice, enterprise AI becomes part of a ...

ESET researchers present technical details on a recent data destruction incident affecting a company in Poland’s energy sector.