IntroductionIn February 2022, BlackBasta emerged as a successor to Conti ransomware and quickly rose to prominence. BlackBasta was operational for three years until February 2025 when their internal ...

The Payouts King ransomware is using the QEMU emulator as a reverse SSH backdoor to run hidden virtual machines on ...

AttackIQ has released a new attack graph that emulates the behaviors of NightSpire Ransomware, a financially motivated ...

PowMix targets Czech workforce since Dec 2025 using jittered C2 and ZIP phishing, enabling stealthy remote access and ...

Windows “deletes” files—but this command makes them truly gone.

A new malware family named 'AgingFly' has been identified in attacks against local governments and hospitals that steal ...

New Platform Capabilities Support Gartner’s Call for a Cryptographic Center of Excellence The Phio TX CMC gives ...

Malwarebytes warns that a fake Microsoft support site is distributing password-stealing malware through a spoofed Windows update installer ...

CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.

Issued on behalf of QSE -- Quantum Secure Encryption Corp.

STX RAT, a newly identified remote access trojan, attempted deployment in finance, showing advanced C2 and stealthy delivery ...