North Korean criminals set on stealing Apple users' credentials and cryptocurrency are using a combination of social ...

The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North ...

North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...

A MacOS-focused social engineering campaign orchestrated by North Korea-based threat actor Sapphire Sleet has been exposed by ...

AI's danger isn't that it's creating new bugs, it's that it's amplifying old ones. On March 10, 2026, Microsoft patched ...

Office Scripts and Power Automate in Microsoft 365 automate a daily Excel sales report, saving email attachments to OneDrive ...

A digitally signed adware tool has deployed payloads running with SYSTEM privileges that disabled antivirus protections on ...

Think twice before opening unexpected WhatsApp attachments—a new kind of malware attack has let hackers seize control of ...

An ongoing malware campaign is using Apple's Script Editor instead of the Terminal to inject the Atomic Stealer data thief onto Macs.

Cybersecurity professionals at Kaspersky uncovered a freshly updated version of JanelaRAT malware, which is targeting online ...

Microsoft reveals a targeted macOS attack using fake job interviews and AppleScript malware to steal credentials and sensitive data.

A convincing impersonation of TidBITS contributor Glenn Fleishman on our public Slack group fooled an experienced IT professional into installing the OSX.Odyssey infostealer. Because Slack is designed ...