A researcher known as „Chaotic Eclipse“ has published a proof-of-concept exploit for a second Microsoft Defender zero-day, dubbed „RedSun,“ in the past two weeks, protesting how the company works with cybersecurity researchers. […]
Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials and sensitive data from Macs.
A benign looking update Dragon Boss pushed out in March 2025 established persistence via scheduled tasks and arranged for future payloads to be excluded from Windows Defender.