Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
InfoQ

Pandas 3.0 Introduces Default String Dtype and Copy-on-Write Semantics

The pandas team has released pandas 3.0.0, a major update that changes core behaviors around string handling, memory ...
The Hacker News

APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities

Pakistan-aligned APT36 and SideCopy target Indian defense and government entities using phishing-delivered RAT malware across Windows and Linux system ...

Microsoft Copilot Makes Oversharing a Real Security Problem

Start with a small Copilot pilot, then automate inactive site archiving and permission reviews to keep SharePoint access under control.

Once-hobbled Lumma Stealer is back with lures that are hard to resist

“LummaStealer is back at scale, despite a major 2025 law-enforcement takedown that disrupted thousands of its command-and-control domains,” researchers from security firm Bitdefender wrote. “The ...

LummaStealer infections surge after CastleLoader malware campaigns

A surge in LummaStealer infections has been observed, driven by social engineering campaigns leveraging the ClickFix technique to deliver the CastleLoader malware.
PC World

Best Windows backup software 2026: Protect your data!

Your PC’s storage media is subject to malware and, on occasion, natural disasters such as lightning, fire, etc. — which is why formulating a backup strategy is critical for keeping your data safe. Our ...