Separate but similar campaigns described by Microsoft and Trend Micro use malicious zip files to spread malware via social ...
ConsentFix and ClickFix attacks steal Microsoft 365 tokens in seconds using fake prompts and OAuth flows. Learn how these MFA ...
PureLogs Stealer uses fake PDF JavaScript files and Google's Blogger pages in the VEIL#DROP campaign, enabling fileless ...
A wave of phishing emails sent to Booking.com partner accommodations in Japan in May led to blockchain-hosted malware ...
A security analyst at a large enterprise recently found sensitive HR documents being copied into a Microsoft Teams channel ...
Criminals are exploiting traffic distribution systems to silently redirect users to fraudulent sites, and the FBI says the ...
Gamaredon hacking group escalated its decade-long espionage campaign against Ukraine in 2025, exploiting a weaponized WinRAR ...
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
The Federal Bureau of Investigation has issued a warning about cyber criminals increasingly exploiting traffic distribution systems (TDS) to redirect internet users to fraudulent websites and deploy ...
Armored Likho, a new APT group using AI-generated malware and the BusySnake Stealer to target government agencies and power ...
Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.