CSO Online

ClickFix attackers using new tactic to evade detection, says Microsoft

Unwitting victims are now being tricked into installing malware via Windows Terminal, but some experts say this is old news. Regardless, they agree that infosec leaders need to educate employees about ...
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...
SecurityWeek

Critical FreeScout Vulnerability Leads to Full Server Compromise

A critical-severity FreeScout vulnerability can be exploited for remote code execution without authentication or user interaction.
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...
The Hacker News

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

APT28 exploited CVE-2026-21513, an MSHTML zero-day (CVSS 8.8), using malicious LNK files to bypass security controls and execute code.
IEEE

Secured Lightweight TRNG Design Using Encrypt Flip-Flop Architecture

Abstract: The development of a True Random Number Generator (TRNG) is crucial for enhancing security in a cryptographic system, or in general where high unpredictability is insisted upon. True ...
decrypt

State-Sponsored Hackers Using Popular AI Tools Including Gemini, Google Warns

Add Decrypt as your preferred source to see more of our stories on Google. Google’s Threat Intelligence Group has released its latest report on AI dangers. The report suggests state-sponsored hackers ...
GitHub

Offline Electron app for AES-256-CBC file encryption/decryption

Securely encrypt any file (AES-256-CBC via WebCrypto) and export an encrypted file Generate and securely copy your Base64-encoded key and IV Decrypt previously encrypted files locally with the correct ...