Cybernews

New malware on Microsoft Marketplace steals passwords and screenshots of desktops

Malicious Visual Studio Code extensions disguised as dark themes and AI assistants infect developers with infostealing malware, stealing cookies, WiFi passwords, and system data.
腾讯网

朝鲜关联黑客组织利用React2Shell漏洞部署新型EtherRAT恶意软件

EtherRAT与C2服务器建立联系后,会进入每500毫秒执行一次的轮询循环,将任何超过10个字符的响应解释为要在受感染机器上运行的JavaScript代码。该恶意软件通过五种不同方法实现持久化: ...
Opinion
Cyber DailyOpinion

Op-Ed: December’s Patch Tuesday reveals 54 vulnerabilities

Microsoft is publishing a relatively light 54 new vulnerabilities this December 2025 Patch Tuesday, which is significantly lower than we have come to expect over the past couple of years.