A hardware fault injection attack results in the first Xbox One boot ROM-level compromise after 12 years.

Fake Claude Code installer malware used Google Ads to place spoofed AI tool pages above real documentation since March 2026.

X.Org Server vulnerability patch released June 2 fixes nine flaws — eight found by TrendAI’s FENRIR static analysis tool, the ...

I'd like to thank my co-author, Martin Zugec, for his valuable contributions to this report. This intrusion adds three dimensions to the public understanding of Chinese APT activity in contested ...

Abstract: Malicious document files used in targeted attacks often contain a small program called shellcode. It is often hard to prepare a runnable environment for dynamic analysis of these document ...

A threat actor with affiliations to China has been linked to a "multi-wave intrusion" targeting an unnamed Azerbaijani oil and gas company between late December 2025 and late February 2026, marking an ...

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...

As threat actors operationalize AI to accelerate attacks, they are also leveraging the wider global interest around AI itself as a social engineering lure. In recent months, Microsoft Threat ...

This project explores x86-64 stack-based buffer overflow vulnerabilities in a controlled, academic environment. It covers the full attack progression — from basic shellcode injection through advanced ...

Customer stories Events & webinars Ebooks & reports Business insights GitHub Skills ...