Advertisement
VENOMOUS#HELPER Phishing Campaign Exploits SimpleHelp and ScreenConnect
VENOMOUS#HELPER phishing campaign targets over 80 organizations using SimpleHelp and ScreenConnect RMM tools for persistent unauthorized remote access.
Silver Fox APT: Tax-Themed Phishing Delivers ABCDoor to India, Russia
China-backed Silver Fox APT targets organizations in India and Russia with over 1,600 tax-themed phishing messages to deploy ABCDoor backdoor and ValleyRAT.
Silver Fox Deploys ABCDoor Malware via Tax-Themed Phishing
China-linked threat actor Silver Fox targets Russian and Indian organizations using tax-themed lures to deliver the novel ABCDoor malware via phishing waves.
Telegram Mini Apps Exploited for Crypto Scams and Malware Delivery
Threat actors are weaponizing Telegram Mini Apps to distribute Android malware and deploy sophisticated crypto drainers via TON blockchain exploits.
Bluekit Phishing Service: AI-Assisted Attacks and Mitigation
Analysis of the new Bluekit phishing service, its 40+ templates and AI features, and critical steps to detect and mitigate AI-assisted phishing campaigns.
Microsoft Outlook iOS Authentication Issues: Remediation and Risks
Microsoft resolves global Outlook.com outage but requires iOS Mail app users to re-authenticate. Learn how to secure accounts and mitigate phishing risks.
26 FakeWallet Apps Infiltrate Apple App Store - Research Analysis
Researchers discover 26 malicious apps on the Apple App Store impersonating crypto wallets to steal seed phrases via trojanized software and browser redirects.
Chinese APT Leverages PlugX & ShadowPad with Cloud C2 for Mongolian Espionage
A Chinese state-sponsored APT is exploiting Microsoft Outlook, Slack, Discord, and file.io for C2, deploying PlugX and ShadowPad in espionage operations targeting
Microsoft Teams Abused in Helpdesk Impersonation Attacks: TTPs & Mitigations
Microsoft warns of helpdesk impersonation attacks via Teams external collaboration. Understand TTPs for initial access, lateral movement, and critical mitigation
Tycoon Phishers Adopt Device Code Attacks to Bypass 2FA
Tycoon 2FA Phishers are now leveraging device code phishing to bypass multi-factor authentication, granting them unauthorized account access.
Sapphire Sleet's ClickFix: North Korea Targets macOS Users
North Korea-backed Sapphire Sleet is deploying ClickFix malware via fake job offers and phony Zoom updates to steal macOS user credentials and data. Learn how to detect
Google Deploys Gemini AI to Combat Malvertising and Brand Fraud
Google expands the use of Gemini LLMs to detect sophisticated ad scams, blocking 5.5 billion ads and countering AI-generated brand impersonation tactics.