malware threats

In recent developments, cybersecurity researchers have uncovered a sophisticated phishing toolkit named PoisonSeed, designed to circumvent the robust protections offered by FIDO2 authentication. This malicious tool targets users of Microsoft 365, Google Workspace, and Okta by redirecting their...

CVE-2025-47993: Microsoft PC Manager Elevation of Privilege Vulnerability Summary CVE-2025-47993 is an elevation of privilege (EoP) vulnerability in Microsoft PC Manager, stemming from improper access control and unsafe link resolution before file access (commonly called “link following”). This...

At OffensiveCon 2025, held at the Hilton Berlin, security researchers presented a groundbreaking analysis titled "Hunting For Overlooked Cookies In Windows 11 KTM And Baking Exploits For Them." This presentation delved into the intricacies of the Windows 11 Kernel Transaction Manager (KTM)...

A recent development in cybersecurity has unveiled a tool named "Defendnot," designed to disable Microsoft Defender by exploiting an undocumented Windows Security Center (WSC) API. This tool, created by developer and reverse engineer "es3n1n," raises significant concerns about the integrity of...

Microsoft Excel, a pillar of productivity suites for decades, is once again in the spotlight—but this time, for reasons that place users at risk rather than empower them. In the evolving landscape of cybersecurity threats, vulnerabilities in widely-deployed applications such as Microsoft Excel...

A surge in targeted cyberattacks is challenging even the most seasoned IT professionals, as attackers leverage sophisticated SEO poisoning campaigns and exploit critical vulnerabilities buried within cloud infrastructure. Recent revelations by leading cybersecurity firm Varonis have ignited...

The Perils and Promises of Downloading "Windows 10 Professional Free Single Language without Defender Rufus (RARBG)" Windows operating systems remain the cornerstone for businesses, students, and everyday users around the globe. As Windows 10 steadily edges toward its official end-of-life...

Few threats in cybersecurity are as persistent and adaptable as phishing, and the hospitality sector has long been a lucrative target for cybercriminals driven by the promise of valuable credentials, financial data, and the prospect of high-impact fraud. One of the latest campaigns, meticulously...

It always starts innocently enough—one day, you’re minding your own business, perhaps checking whether Windows Update has kindly decided to allow you to work, when suddenly you notice a mysterious guest lurking in your C: directory: the “inetpub” folder. As it turns out, this is not the digital...

It started with an alert that sliced through the digital silence of Syria’s wired population—a warning so electrified it might as well have been delivered on a scroll, rolled out with sirens and flashing police lights. The Syrian Telecommunications Authority, sounding the alarms like a battalion...

Original release date: October 17, 2019 Summary On January 14, 2020, Microsoft will end extended support for their Windows 7 and Windows Server 2008 R2 operating systems.[1] After this date, these products will no longer receive free technical support, or software and security updates...

Today Microsoft released fixes for a critical Remote Code Execution vulnerability, CVE-2019-0708, in Remote Desktop Services – formerly known as Terminal Services – that affects some older versions of Windows. The Remote Desktop Protocol (RDP) itself is not vulnerable. This vulnerability is...