GitHub

A collection of C# shellcode injection techniques. All techniques use an AES encrypted ...

I will be building this project up as I learn, discover or develop more techniques. Note: The project is not intended to be used as-is. If you are going to use any of the techniques there is a better ...

AI Just Hacked One Of The World's Most Secure Operating Systems

An AI agent just autonomously exploited a FreeBSD kernel vulnerability in four hours, signaling a fundamental shift in the ...
腾讯网

可怕!AI用4小时攻破“世界最安全开源系统”

行业调查显示, 企业环境中修复关键漏洞的平均时间超过60天,而AI能在漏洞披露后几小时内,就开发出有效的攻击手段。 从补丁发布到漏洞被利用的“时间窗口”,已经从数周压缩到几乎为零。那些还把补丁更新当成季度维护任务的组织,其威胁模型早已过时。

Hackers exploit TrueConf zero-day to push malicious software updates

Hackers have targeted TrueConf conference servers in attacks that exploit a zero-day vulnerability, allowing them to execute ...
The Hacker News

Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains

AtlasCross RAT spreads via 11 fake domains registered October 27, 2025, enabling encrypted C2 control and persistence.
Security Boulevard

That “job brief” on Google Forms could infect your device

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain.

C23-X05 魅影潜伏与仿冒陷阱:银狐组织借OpenClaw安装包实施攻击活动 ...

随着开源AI代理框架OpenClaw(“龙虾”)的爆火,黑产团伙“银狐”迅速借势发起钓鱼攻击活动。通过生成高仿钓鱼页面,注册仿冒域名,利用搜索引擎优化(SEO)和付费广告将恶意链接置顶,诱导用户下载伪装成“OpenClaw本地部署工具”的恶意安装包。

TA446 组织利用 DarkSword 漏洞套件针对 iOS 的定向钓鱼攻击研究

2026 年 3 月,Proofpoint 披露俄罗斯背景 APT 组织 TA446(亦称 COLDRIVER、Star Blizzard)依托泄露的 DarkSword iOS ...