The suspected Pakistan-linked threat actor known as Transparent Tribe is using malicious Android apps mimicking YouTube to distribute the CapraRAT mobile remote...
A new analysis of the Android banking trojan known as Hook has revealed that it’s based on its predecessor called ERMAC. “The...
An ongoing campaign is targeting Facebook Business accounts with bogus messages to harvest victims’ credentials using a variant of the Python-based NodeStealer...
The threat actors behind RedLine and Vidar information stealers have been observed pivoting to ransomware through phishing campaigns that spread initial payloads...
A download manager site served Linux users malware that stealthily stole passwords and other sensitive information for more than three years as...
A new ransomware family called 3AM has emerged in the wild after it was detected in a single incident in which an...
There is a new battlefield. It is global and challenging to defend. What began with a high-profile incident back in 2007, when...
Microsoft is warning of a new phishing campaign undertaken by an initial access broker that involves using Teams messages as lures to...
A sophisticated phishing campaign is using a Microsoft Word document lure to distribute a trifecta of threats, namely Agent Tesla, OriginBotnet, and...
A new information stealer malware called MetaStealer has set its sights on Apple macOS, making the latest in a growing list of...
A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from...
A new malware loader called HijackLoader is gaining traction among the cybercriminal community to deliver various payloads such as DanaBot, SystemBC, and...
Spyware masquerading as modified versions of Telegram have been spotted in the Google Play Store that’s designed to harvest sensitive information from...
A legitimate Windows tool used for creating software packages called Advanced Installer is being abused by threat actors to drop cryptocurrency-mining malware...
The U.K. and U.S. governments on Thursday sanctioned 11 individuals who are alleged to be part of the notorious Russia-based TrickBot cybercrime...
Google has rolled out monthly security patches for Android to address a number of flaws, including a zero-day bug that it said...
The Iranian threat actor tracked as APT34 has been linked to a new phishing attack that leads to the deployment of a...
Banking and logistics industries are under the onslaught of a reworked variant of a malware called Chaes. “It has undergone major overhauls:...
Malicious actors associated with the Vietnamese cybercrime ecosystem are leveraging advertising-as-a-vector on social media platforms such as Meta-owned Facebook to distribute malware....
Threat actors are exploiting poorly secured Microsoft SQL (MS SQL) servers to deliver Cobalt Strike and a ransomware strain called FreeWorld. Cybersecurity...
Cybersecurity and intelligence agencies from Australia, Canada, New Zealand, the U.K., and the U.S. on Thursday disclosed details of a mobile malware...