Podcasts
Observations
Threat Research
Updates from Netskope
Subscribe
Podcasts
Observations
Threat Research
Updates from Netskope
Subscribe
Homepage
The Lens
Threat Research
Threat Research
Read the latest research papers from the Netskope Threat Labs team.
Recent Articles
macOS ClickFix Lures Deploy AppleScript Stealer & Persistent RAT
June 17, 2026
Jan Michael Alcantara
AI Agents and the OAuth Trust Problem at Scale
June 11, 2026
Vini Egerland
Shai-Hulud-Style npm Worm Hits @tanstack
May 12, 2026
Gianpietro Cutolo
DirtyFrag: Two Kernel Bugs Give Root on All Major Linux Distros
May 8, 2026
Vini Egerland
OpenClaw's Hologram: Fake Installer Ships Rust Infostealer
May 7, 2026
Vini Egerland
Shai-Hulud Resurfaces:
[email protected]
Harvesting Github Credentials
April 30, 2026
Gianpietro Cutolo
macOS ClickFix Campaign: AppleScript Stealers & New Terminal Protections
April 20, 2026
Jan Michael Alcantara
From ClickFix to MaaS: Exposing a Modular Windows RAT and Its Admin Panel
April 6, 2026
Jan Michael Alcantara
OpenClaw Trap: AI-Assisted Lure Factory Targets Developers & Gamers
March 23, 2026
Vini Egerland
Keep a close eye on The Lens
Subscribe
Attackers Weaponize Signed RMM Tools via Zoom, Meet, & Teams Lures
February 12, 2026
Jan Michael Alcantara
Malicious Bing Ads Lead to Widespread Azure Tech Support Scams
February 5, 2026
Ray Canzanese
OpenClaw/MoltBot/ClawdBot: The Risky Personal AI Agent and Netskope Protection
January 28, 2026
Gianpietro Cutolo
Shai-Hulud 2.0: Aggressive, Automated, and Fast Spreading
November 26, 2025
Gianpietro Cutolo
The Future of Malware is LLM-powered
November 20, 2025
Jan Michael Alcantara
RedTiger: New Red Teaming Tool in the Wild Targeting Gamers and Discord Accounts
October 23, 2025
Jan Michael Alcantara
New Python RAT Targets Gamers via Minecraft
October 22, 2025
Nikhil Hegde
Securing LLM Superpowers: The Invisible Backdoors in MCP
September 24, 2025
Gianpietro Cutolo
Securing LLM Superpowers: When Tools Turn Hostile in MCP
September 3, 2025
Gianpietro Cutolo
Show More
Back to top