ESET researchers present technical details on a recent data destruction incident affecting a company in Poland’s energy sector.

The North Korean hacker group Konni (Opal Sleet, TA406) is using AI-generated PowerShell malware to target developers and engineers in the blockchain sector.

North Korean Konni hackers are now targeting blockchain developers and engineers with AI-generated malware.

Hitting 1 billion monthly active users should be cause for celebration in Redmond. These days, though, it feels like every one of them is complaining. Does Microsoft have what it takes to address the ...

The Gootloader malware, typically used for initial access, is now using a malformed ZIP archive designed to evade detection ...

As attackers hide longer and deeper, behavior-first detection becomes the only reliable way to expose them.

This repository contains PowerShell scripts organized by Azure service categories. Scripts include proper error handling, parameter validation, and follow PowerShell ...

DeadLock ransomware relies on Polygon smart contracts to spin proxy servers to produce a nearly unshuttable infrastructure.

Group-IB researchers said the most unusual aspect of DeadLock lies in its use of Polygon smart contracts to manage ...

North Korean group Konni uses AI-assisted PowerShell malware and phishing via Google ads and Discord to breach blockchain ...

Learn how to design and build your own interactive menus inside your PowerShell scripts. This will help non-PowerShell users easily navigate and use them.

This is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ...