phishing 24
- Fake IT Support Calls on Microsoft Teams Deliver EtherRAT Malware
- Trinity of Chaos: Anatomy of the ShinyHunters Data-Extortion Machine
- Gamaredon Exploits WinRAR CVE-2025-8088 to Deploy GammaWorm and GammaSteel Against Ukraine
- Google Deploys AI Deepfake Call Detection to Flag Impersonation Scams in Phone App
- Russia's FSB Claims Foreign Intelligence Agencies Installed Malware on Senior Officials' Phones
- Meta AI Confused Deputy Flaw Lets Attackers Take Over Instagram Accounts
- Meta AI Confused Deputy Flaw Enables High-Profile Instagram Account Takeovers
- Operation FlutterBridge: macOS Malvertising Campaign Distributes New FlutterShell Backdoor
- Pakistan-Linked SideCopy Deploys Xeno RAT Against Afghanistan Finance Ministry
- SideCopy Targets Afghanistan Finance Ministry with Xeno RAT via Pashto-Language Spear Phishing
- Attackers Use AI Chatbot Responses to Deliver Cryptojacking Malware
- MuddyWater Uses DLL Side-Loading in Global Espionage Campaign Hitting 9 Countries
- Unit 42: TamperedChef Clusters Deliver Stealthy Payloads via Trojanized Productivity Apps
- CloudZ RAT Abuses Windows Phone Link to Steal Credentials and Bypass 2FA
- Hugging Face and ClawHub Abused as Malware Distribution Platforms
- AI-Generated Celebrity Deepfakes Drive Scam Campaigns on TikTok
- Microsoft Rolls Out Entra Passkeys on Windows for Phishing-Resistant Auth in Late April
- 26 Malicious Crypto Wallet Apps Found in China's Apple App Store
- Apple Account Change Alerts Abused to Send Phishing Emails
- Threat Actors Abusing n8n Agentic AI Workflow Platform in Email Attack Campaigns
- 100+ Malicious Chrome Extensions in Web Store Steal Google OAuth Tokens and Deploy Backdoors
- Fake Claude Website Delivers PlugX RAT via DLL Sideloading
- VENOM Phishing-as-a-Service Platform Targets C-Suite Executives' Microsoft Credentials
- Atomic Stealer Delivered to macOS Users via ClickFix Script Editor Attack