detection

Safe IDE Extensions: Key Triggers and Chunks to Watch for in Plugin Code

22 February 2026 - Posted in Threat Analyze by Jok3r

Background: Only looking into well-known attack patterns found in Chrome and other browser extensions is not enough. Since we work daily with IDEs, there is another potential attacker [...] Read more

Spotting Threats in Autonomous AI: Essential Skills for Agentic Systems

08 February 2026 - Posted in Incident Response by Jok3r

Background: The OpenClaw agentic solution has an interaction feature related to feeding independent developer skills from the specific marketplace. The feature name is 'skills,' which is misleadingly [...] Read more

The Invisible Threat: How to Detect Physical Keystroke Injection Implants

15 June 2025 - Posted in Threat Analyze by Jok3r

Background: In today's cybersecurity landscape, there are many attack types. One of them is hardware-based, which can be leveraged by threat actors to connect special keystroke injection devices into [...] Read more

Defending Against ClickFix and FakeCaptcha: Detection Techniques for Modern Malware Campaigns

29 May 2025 - Posted in Hardenings by Jok3r

Background: ClickFix or FakeCaptcha attacks have become a common component of many attack campaigns. These techniques enable threat actors, with the user's unwitting assistance, to execute arbitrary [...] Read more