This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Multiple WhatsApp attack warnings issued. Updated April 4: Following the threat warning ...

Microsoft has observed a malware campaign in which attackers send VBS files (Visual Basic Script) in WhatsApp messages. If victims execute them, it triggers a multi-stage infection chain, at the end ...

The attack chain relies on delayed execution, trusted Windows utilities, and legitimate hosting services to maintain persistence and evade detection. Microsoft is warning WhatsApp users of a new ...

Microsoft: Hackers Are Using WhatsApp to Deliver Malware to Windows PCs Your email has been sent A new wave of attacks is turning trusted WhatsApp messages into malware delivery traps for Windows ...

Be careful what you click on. Miscreants are abusing WhatsApp messages in a multi-stage attack that delivers malicious Microsoft Installer (MSI) packages, allowing criminals to control victims' ...

Microsoft Defender Experts observed a campaign beginning in late February 2026 that uses WhatsApp messages to deliver malicious Visual Basic Script (VBS) files. Once executed, these scripts initiate a ...

Infostealer threats are rapidly expanding beyond traditional Windows-focused campaigns, increasingly targeting macOS environments, leveraging cross-platform languages such as Python, and abusing ...

A new multi-stage phishing campaign has been observed targeting users in Russia with ransomware and a remote access trojan called Amnesia RAT. "The attack begins with social engineering lures ...

A new malware campaign is turning WhatsApp Web into a weapon. Security researchers say a banking Trojan linked to Astaroth is now spreading automatically through chat messages, making the attack ...

A multi-stage Windows malware campaign, tracked as SHADOW#REACTOR, has been analyzed by cybersecurity researchers, revealing a complex infection chain designed to stealthily deploy the Remcos remote ...

Researchers have attributed separate clusters of previously tracked malicious activity to a single group that has elevated its tactics this year, adding previously undocumented Microsoft IIS backdoors ...