随着端点检测与响应（EDR）技术及反病毒软件的日益成熟，传统依赖于可执行文件（.exe, .dll）落地执行的恶意软件生存空间受到极大挤压。攻击者被迫不断演进其战术、技术与过程（TTPs），寻求更隐蔽的入侵途径。在此背景下，“无文件攻击”逐渐成为主流趋势，其核心特征是不在磁盘上留下明显的恶意文件实体，而是利用操作系统自带的合法管理工具（如PowerShell, WMI, PsExec等）在内存中执 ...

Transparent Tribe uses AI tools to mass-produce polyglot malware targeting India using Slack, Discord, and Google Sheets C2.

A Chrome extension named "QuickLens - Search Screen with Google Lens" has been removed from the Chrome Web Store after it was ...

OpenAI has launched its Codex app on Windows, bringing a native AI coding assistant with project management, automations, and WSL support for developers.

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

Signed malware backed by a stolen EV certificate deployed legitimate RMM tools to gain persistent access inside enterprise ...

The above button links to Coinbase. Yahoo Finance is not a broker-dealer or investment adviser and does not offer securities or cryptocurrencies for sale or facilitate trading. Coinbase pays us for ...

Claude Code is the new AI coding assistant that many users are using in their workflows. Here's everything you need to know ...

【本文由小黑盒作者@飞碟AI于03月05日发布，转载请标明出处！】 OpenAI Developers 在 X 平台宣布，Codex 桌面应用 Windows 版已正式上线。用户可通过 developers。openai。com/wendows 链接跳转至微软商店下载安装。 该应用支持本地 PowerShell 运行，并原生集成 Windows ...

Let me tell you how I came within steps of becoming a victim in an elaborate social engineering scheme designed to exploit something so routine and apparently harmless as a Microsoft Teams call ...

A recent malware campaign is using a trusted Windows application to launch attacks for stealing credentials via social engineering with the exploitation of the Windows Terminal with the use of Lumma ...

Apache APISIX is a dynamic, real-time, high-performance API Gateway. APISIX API Gateway provides rich traffic management features such as load balancing, dynamic upstream, canary release, circuit ...