Advertisement
ForceMemo: Credential Theft Compromises Python Repositories
Researchers reveal ForceMemo, a campaign exploiting credentials stolen via GlassWorm to compromise hundreds of GitHub accounts and Python repositories.
FBI Seeks Victims of Malicious Steam Games Stealing Credentials
The FBI is investigating eight malicious games on Steam that stole user credentials from tens of thousands of players. Learn how to identify and report compromised
Starbucks Employee Portal Phishing Leads to Data Breach
Starbucks confirms a data breach impacting hundreds of employees via targeted phishing attacks on an internal portal. Learn about the incident and prevention.
Storm-2561 Leverages SEO Poisoning for Credential Theft
Microsoft warns of Storm-2561's credential theft campaign using SEO poisoning to distribute fake, digitally signed VPN clients disguised as legitimate enterprise
Phishing Alert: Impersonation of US City/County Officials Targets Permit Applicants
The FBI warns of active phishing campaigns impersonating US city and county officials to target businesses and individuals seeking permits, aiming for fraud and data
Europol Dismantles Tycoon 2FA Phishing Platform: Mitigating MFA Bypass
Europol and cybersecurity vendors dismantle Tycoon 2FA, a major phishing-as-a-service platform known for its sophisticated MFA bypass capabilities. Learn its impact and
Phishing Campaign Leverages Fake Google PWA to Steal Credentials, MFA
A sophisticated phishing campaign uses a fake Google Security PWA to compromise accounts, steal MFA codes, and proxy traffic. Learn how to protect.
Typosquatting: Deceptive Domains for Credential Theft & Malware
Analysis of typosquatting campaigns leveraging deceptive domain names for phishing, credential harvesting, and malware delivery, bypassing traditional detections.