The Hacker News

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Proofpoint says UNK_DeadDrop sent 250+ phishing emails to nearly 100 firms, using GitHub and VS Code lures to steal ...
GitHub

AxonASP 2.2: The Ultimate Classic ASP Engine for the Modern Web

Run Classic ASP on Linux, Windows, and macOS natively with extreme performance. Welcome to AxonASP 2.2, the definitive high-performance runtime for executing Microsoft Classic ASP, VBScript, and ...
SecurityWeek

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Attackers are increasingly abusing Microsoft’s decades-old MSHTA utility to stealthily deliver stealers, loaders, and persistent malware through phishing, fake software downloads, and LOLBIN-based ...
Bitdefender

Microsoft’s MSHTA Legacy Tool Still Powers Malware Campaigns on Windows

Bitdefender security researchers have discovered that attackers continue to exploit Microsoft HTML Application Host (MSHTA), a legacy utility available by default on Windows systems that can execute ...
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

Microsoft Defender Experts observed a campaign beginning in late February 2026 that uses WhatsApp messages to deliver malicious Visual Basic Script (VBS) files. Once executed, these scripts initiate a ...
TWCN Tech News

Configure Attack Surface Reduction (ASR) in Windows Defender

Attack Surface Reduction is a feature of Windows Defender Exploit Guard that prevents actions that are used by exploit-seeking malware to infect computers. Windows Defender Exploit Guard is a new set ...
TWCN Tech News

How to install or uninstall VBScript in Windows 11

If you are setting up a new PC with Windows 11 version 24H2 (2024 Update) or later, developers may not find the VBScript installed after installation, as Microsoft does not install it by default now.
SecurityWeek

Malware Now Uses AI During Execution to Mutate and Collect Data, Google Warns

Google has released a report describing the novel ways in which malware has been using AI to adapt and evade detection. Google’s Threat Intelligence Group (GTIG) has seen several new and interesting ...
LinkedIn

How to Block JavaScript or VBScript from Launching Downloaded Executable Content using Intune

This Intune policy is designed to enhance endpoint security by preventing JavaScript and VBScript from automatically launching executable files that users download. These scripting languages, while ...
TechSpot

New infostealer malware snaps webcam photos when you watch porn

WTF?! It's an email scam as old as the Nigerian prince asking for money: someone claiming they hacked your webcam and have recorded you in an act of self-pleasure. Unless you pay up, the video will be ...
The Windows Club

Microsoft to disable ActiveX in Office

Microsoft has announced that starting later this month, ActiveX controls will be disabled by default in all Windows versions of Microsoft 365 and Office 2024 apps—including Word, Excel, PowerPoint, ...
Microsoft

Threat actors misuse Node.js to deliver malware and other malicious payloads

Since October 2024, Microsoft Defender Experts (DEX) has observed and helped multiple customers address campaigns leveraging Node.js to deliver malware and other payloads that ultimately lead to ...