Researchers at VulnCheck have uncovered a new malicious campaign exploiting the CVE-2021-41773 vulnerability in Apache HTTP Server version 2.4.49. This flaw enables remote code execution by bypassing path traversal protections, allowing attackers to access...
Microsoft has begun rolling out an update to the Copilot app for Windows, significantly enhancing its artificial intelligence capabilities through the introduction of the Desktop Share feature. With this update, Copilot can now “see”...
New data reveals a compelling shift in the U.S. desktop operating system landscape: Linux has, for the first time, surpassed the five-percent threshold, reaching a market share of 5.03 percent—a landmark moment for the...
GoExec is a new take on some of the methods used to gain remote execution on Windows devices. GoExec implements a number of largely unrealized execution methods and provides significant OPSEC improvements overall. Goexec supports...
Malicious actors are increasingly leveraging digitally signed drivers to carry out stealthy attacks on the Windows kernel, circumventing standard security mechanisms and enhancing their ability to remain undetected. Despite the presence of safeguards such...
A newly emerged botnet known as hpingbot, identified by the NSFOCUS Fuying Lab‘s global threat monitoring system, has rapidly become one of the most prominent cyber threats since its appearance in early June 2025....
A newly discovered technique in Windows allows malicious scripts to be executed without triggering any user warnings. This method, known as FileFix, has been refined to exploit a vulnerability in how browsers handle saved...
RemoteMonologue is a Windows credential harvesting technique that enables remote user compromise by leveraging the Interactive User RunAs key and coercing NTLM authentications via DCOM. Features 🔹 Authentication Coercion via DCOM (-dcom) Targets three DCOM...
Hollowise is a Windows-based tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques. It allows for stealth execution of debuggers and code and network analizers by replacing the memory of a suspended process (e.g. calc.exe) with...
The OpenVPN team has issued a warning regarding a vulnerability found in the Windows driver of its VPN client, which could allow malicious actors to crash the system. Catalogued as CVE-2025-50054, the flaw was...
chgpass.exe is a Windows standalone executable tool that allows you to change the password of user/computer accounts in Active Directory (AD) via MS-SAMR protocol. This tool can be used when you have the necessary permissions...
According to a report by Tom’s Hardware, the statistics website Statcounter has released a new report showing a noticeable decline in the global market share of Windows 11 since February of this year, dropping...
Microsoft unveiled its Windows Copilot AI assistant as early as May last year, initiating the integration of AI-related functionalities within the Windows operating system and continuously releasing various measures to enhance the usage of...
Google and Qualcomm have announced the introduction of a Chrome browser optimized for Arm architecture Windows PCs equipped with Snapdragon processors, promising an enhanced browsing experience. This refinement is set to elevate the user...
Cracking BitLocker’s protection in just 43 seconds using equipment costing less than $10 has become feasible, casting doubt on the reliability of one of the most popular hard drive encryption methods in the Windows...
As of January 31 this year, the downloadable version of the Windows 10 operating system has ceased sales, with subsequent security updates only being provided until October 14, 2025. To address the ongoing usage...
