ClickFix attacks are delivering BabaDeda, Lorem Ipsum, and Potemkin loaders to deploy stealers, RATs, and ransomware-linked ...

A view of how malicious shellcode is loaded as part of the DLL attack (Source: Sophos) A recently identified Chinese hacking group is using multiple Dynamic Link Library attack techniques to target ...

A new, Chinese advanced persistent threat (APT) group making the rounds performs DLL side-loading attacks including the phrase "KilllSomeOne." According to Sophos researcher Gabor Szappanos, the group ...

Ransomware attackers targeting a Fortune 100 company in the finance sector used a new malware strain, dubbed PDFSider, to deliver malicious payloads on Windows systems. An initial access broker ...

Researchers warn of renewed attacks against high-profile organizations launched by a Chinese APT actor known in the industry as ToddyCat. The group has been refining its tactics as well as malware ...

A recent research report by Uptycs has highlighted the evolution of QuasarRAT, an open-source remote administration tool (RAT) known for its lightweight nature and range of malicious functions.

Researchers from global security firm Sophos claim they have found new malware that uses DLL side-loading to run malicious code and install backdoors on Windows systems. Sophos threat research ...

Dynamic-link library (DLL) side-loading occurs when Windows Side-by-Side (WinSxS) manifests are not explicit about the characteristics of DLLs being loaded by a program. In layman’s terms, DLL ...

Security researchers have warned of a new ransomware variant leveraging a recently disclosed vulnerability for initial access and going to great lengths to evade detection. However, in Atom Silo’s ...

Researchers have discovered a defense evasion technique that could allow attackers to run malicious code through the Microsoft Remote Desktop Protocol (RDP) using an attack tactic called DLL ...