The Russian state-sponsored APT28 threat group is using a custom variant of the open-source Covenant post-exploitation framework for long-term espionage operations.

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.

Abstract: With the rising demand for website data storage, leveraging cloud storage services for vast user file storage has become prevalent. Nowadays, a new file upload scenario has been introduced, ...

Fara-7B is Microsoft's first agentic small language model (SLM) designed specifically for computer use. With only 7 billion parameters, Fara-7B is an ultra-compact Computer Use Agent (CUA) that ...

The Sophia Script is an open-source PowerShell module designed to debloat and fine-tune Windows 11 (and Windows 10). It is ...

A general-purpose Claude Code action for GitHub PRs and issues that can answer questions and implement code changes. This action intelligently detects when to activate based on your workflow ...

AdGazer is a model that predicts human ad attention using eye-tracking–trained AI. Page context drives up to one-third of ad attention outcomes. An academic demo could quickly evolve into real ad-tech ...

Apple is testing secure messaging between Android and iOS devices with iOS 26.4, iPadOS 26.4, and macOS Tahoe 26.4. The updates introduce end-to-end encryption (E2EE) for RCS messages, a security ...

Abstract: The development of a True Random Number Generator (TRNG) is crucial for enhancing security in a cryptographic system, or in general where high unpredictability is insisted upon. True ...

Add Decrypt as your preferred source to see more of our stories on Google. Google’s Threat Intelligence Group has released its latest report on AI dangers. The report suggests state-sponsored hackers ...