Security tooling is not written in a single language. Python powers most automation. C sits at the exploit layer. PowerShell ...
The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel artifacts across 19 packages in the Python Package Index (PyPI) registry, as the ...
A growing trend in modern intrusions is the compromise of internet-facing edge appliances such as firewalls and VPN gateways. Systems traditionally deployed as security boundaries are increasingly ...
The Russian state-sponsored hacking group known as Turla has transformed its custom backdoor Kazuar into a modular peer-to-peer (P2P) botnet that's engineered for stealth and persistent access to ...
I'd like to thank my co-author, Martin Zugec, for his valuable contributions to this report. This intrusion adds three dimensions to the public understanding of Chinese APT activity in contested ...
Nvidia dominated tech news this week, as its hold on the artificial intelligence factory boom only tightened at its annual GTC conference in San Jose. It introduced a raft of updated chips and ...
The Justice and Emergency Services Management Committee (JESMC) are delighted to launch the digital skills catalogue for the public sector! Alongside procurement and Artificial Intelligence, digital ...
North Korea's Famous Chollima uses EtherHiding to hide malware in smart contracts on BNB Chain and Ethereum posing as job recruiters as regime stole $1.3B across 47 incidents in 2024 and $2.2B in H1 ...
This blogpost introduces our latest white paper, presented at Virus Bulletin 2025, where we detail the operations of the North Korea-aligned threat actor we call DeceptiveDevelopment and its ...