Microsoft

Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...

Fake Claude Code Spreads Malware to Windows, macOS Users

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems.

APT28 hackers deploy customized variant of Covenant open-source tool

The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation framework for long-term espionage operations.
GitHub

windows-driver-docs /windows-driver-docs-pr

Windows Driver Kit (WDK) is a software tool set used to develop, test, and deploy Windows drivers. The content included in the WDK can be categorized into five unique types: Headers, Libraries, ...
IEEE

Detecting Inconsistencies in Software Architecture Documentation Using Traceability Link Recovery

Abstract: Documenting software architecture is important for a system’s success. Software architecture documentation (SAD) makes information about the system available and eases comprehensibility.
GitHub

Sophos Firewall Python SDK

The Sophos Firewall Python SDK was developed by a small community of engineers within Sophos who will be maintaining the project. Questions can be posted to the Q&A section of the Github project. If ...