phishing

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

Threat Intelligence

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

A newly uncovered phishing-as-a-service (PhaaS) platform, named “Morphing Meerkat,” has been leveraging DNS mail exchange (MX) records...

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

Threat Intelligence

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

A newly identified phishing-as-a-service (PhaaS) operation, dubbed Morphing Meerkat by researchers, has adopted DNS-over-HTTPS (DoH) to bypass...

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Malware Analysis

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Elastic Security Labs has uncovered a sophisticated malware campaign targeting Iraq’s telecommunications sector, utilizing a new malware...

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

APT-News

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

Russian state-aligned hackers have launched a sophisticated phishing campaign impersonating the U.S. Central Intelligence Agency (CIA) to...

MailChimp Security Breaches: Phishing, Social Engineering, and Session Hijacking Tactics

Data Breach

MailChimp Security Breaches: Phishing, Social Engineering, and Session Hijacking Tactics

MailChimp, a widely used email marketing platform, has become a prime target for cybercriminals employing sophisticated phishing...

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

APT-News

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

An advanced persistent threat (APT) group linked to Pakistan has been observed impersonating India’s postal service to...

Morphing Meerkat PhaaS Exploits DNS MX Records to Target 114 Brands

Threat Intelligence

Morphing Meerkat PhaaS Exploits DNS MX Records to Target 114 Brands

A newly uncovered phishing-as-a-service (PhaaS) platform, dubbed Morphing Meerkat, is dynamically impersonating over 114 brands by abusing...

March 2025 Threat Intelligence Update: YARA, Snort Rules, and Emerging Ransomware Threats

Threat Intelligence

March 2025 Threat Intelligence Update: YARA, Snort Rules, and Emerging Ransomware Threats

Security teams worldwide must stay updated on the latest detection rules and emerging threats to defend against...

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

APT-News

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

In a coordinated international operation, INTERPOL has arrested 306 suspects and seized 1,842 electronic devices in a...

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

APT-News

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

Security researchers have identified a new campaign where threat actors are leveraging Microsoft’s .NET Multi-platform App UI...

February 2025 Financial Sector Cyber Threats: Korean & Global Security Analysis

Threat Intelligence

February 2025 Financial Sector Cyber Threats: Korean & Global Security Analysis

A recent ASEC report reveals intensifying cyber threats against financial institutions in South Korea and worldwide, with...

Critical PostgreSQL SQLi and Palo Alto VPN Exploits Targeted in Latest Snort Rules Update (Feb 2025 Week 4)

Threat Intelligence

Critical PostgreSQL SQLi and Palo Alto VPN Exploits Targeted in Latest Snort Rules Update (Feb 2025 Week 4)

AhnLab’s Threat Intelligence Platform has released 19 new Snort rules addressing critical vulnerabilities including PostgreSQL SQL injection...

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

APT-News

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

A sophisticated phishing campaign dubbed “0ktapus” successfully bypassed multi-factor authentication (MFA) protections to compromise over 130 organizations,...

Trojan.PS1.POWLOAD.JKP: COVID-19 Themed PowerShell Malware Targeting Italian Users

Malware Analysis

Trojan.PS1.POWLOAD.JKP: COVID-19 Themed PowerShell Malware Targeting Italian Users

A new variant of the POWLOAD Trojan has emerged, leveraging COVID-19 themes to target Italian users through...

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

Malware Analysis

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

Trojan.W97M.EMOTET.SMI is a variant of the notorious Emotet malware, primarily spread through malicious Microsoft Office documents. Despite...

How to Disable Fake System Notifications on macOS: A Security Professional’s Guide

News

How to Disable Fake System Notifications on macOS: A Security Professional’s Guide

Cybercriminals are exploiting macOS’s push notification system to distribute fake alerts mimicking legitimate system warnings. These malicious...

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

News

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

Multi-factor authentication (MFA) is a foundational security control, but attackers are increasingly bypassing it using MFA Push...

New Phishing Tactic Exploits Firebase to Steal Credentials

Threat Intelligence

New Phishing Tactic Exploits Firebase to Steal Credentials

Check Point Research has uncovered a sophisticated phishing campaign leveraging Google Firebase to host fraudulent pages mimicking...

Telekopye Cybercriminals Now Target Booking.com and Airbnb Users in Sophisticated Hotel Scams

APT-News

Telekopye Cybercriminals Now Target Booking.com and Airbnb Users in Sophisticated Hotel Scams

ESET researchers have uncovered a significant evolution in the operations of the Telekopye cybercriminal network, which has...

ESET Threat Report H2 2024: Rising Infostealers, Deepfake Scams, and Cryptocurrency Threats

Threat Intelligence

ESET Threat Report H2 2024: Rising Infostealers, Deepfake Scams, and Cryptocurrency Threats

The second half of 2024 has seen significant shifts in the cyberthreat landscape, according to ESET’s latest...

Posts pagination

Previous 1 2 3 4 5 Next

phishing

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

Morphing Meerkat PhaaS Exploits DNS MX Records to Target 114 Brands

March 2025 Threat Intelligence Update: YARA, Snort Rules, and Emerging Ransomware Threats

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

February 2025 Financial Sector Cyber Threats: Korean & Global Security Analysis

Critical PostgreSQL SQLi and Palo Alto VPN Exploits Targeted in Latest Snort Rules Update (Feb 2025 Week 4)

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

Trojan.PS1.POWLOAD.JKP: COVID-19 Themed PowerShell Malware Targeting Italian Users

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

How to Disable Fake System Notifications on macOS: A Security Professional’s Guide

MFA Push Spray Attacks: How Hackers Exploit Multi-Factor Authentication Fatigue

New Phishing Tactic Exploits Firebase to Steal Credentials

Telekopye Cybercriminals Now Target Booking.com and Airbnb Users in Sophisticated Hotel Scams

ESET Threat Report H2 2024: Rising Infostealers, Deepfake Scams, and Cryptocurrency Threats

You may have missed

Procolored Printer Drivers Distributed Malware for Six Months: Technical Analysis and Mitigation

Tor Oniux: Kernel-Level Network Anonymization for Linux Applications

Google Chrome’s Security Update: Blocking Admin-Level Launches in Windows

Australian Human Rights Commission Data Breach: Technical Analysis and Impact