Advertisement
Bluekit Phishing Kit: AI Integration and Automated Deployment
The Bluekit phishing kit uses an AI assistant and automated domain registration to simplify credential harvesting against financial and logistics sectors.
Telegram tdata Credential Harvesting: Risks and Mitigation Strategies
Learn how threat actors exploit Telegram Desktop tdata folders for session hijacking and credential harvesting, bypassing multi-factor authentication.
McGraw Hill Data Breach: 13.5 Million Accounts Leaked by ShinyHunters
Threat actor ShinyHunters leaks 13.5 million McGraw Hill user records following a Salesforce environment breach. Includes password hashes and PII.
TeamPCP Supply Chain Attack: From Credential Theft to Payroll Fraud
TeamPCP leverages supply chain attacks to compromise trusted software, facilitating large-scale credential harvesting, logistics theft, and payroll fraud.
Identity-Based Attacks: Why Breach Monitoring Fails to Stop Infostealers
Infostealers are bypassing MFA by harvesting session cookies. Learn why traditional breach monitoring is insufficient and how to secure identity perimeters.
Guardarian Users Targeted via 36 Malicious Strapi npm Packages
Analysis of a supply chain attack involving 36 malicious npm packages posing as Strapi plugins to target Guardarian users and harvest sensitive credentials.
Dutch Police Phishing Breach Exposes Internal Contact Data
The Dutch National Police (Politie) confirms a security breach after a phishing attack exposed work contact details for 65,000 police department employees.
Security Firm Executive Targeted via DKIM-Signed Phishing
A sophisticated phishing campaign bypassed security filters using DKIM-signed emails and Cloudflare-protected landing pages to target a security executive.
Romanian National Pleads Guilty to Initial Access Brokerage Targeting Oregon State Infrastructure
Catalin Dragomir admitted to harvesting and selling unauthorized administrative credentials for an Oregon state government network, highlighting the persistent threat of Initial Access Brokers (IABs).
SANDWORM_MODE: Malicious npm Cluster Automates Secret Harvesting and Crypto Theft
Security researchers have identified a coordinated campaign involving 19 malicious npm packages designed to exfiltrate CI/CD secrets, API tokens, and private cryptocurrency keys.