phishing

Center Parcs’ X Account Mishap: A Case Study in Digital Hygiene Failures

News

Center Parcs’ X Account Mishap: A Case Study in Digital Hygiene Failures

When Center Parcs UK deactivated its X (formerly Twitter) account in January 2025, it inadvertently created a...

Medusa Ransomware Targets Critical Infrastructure: Technical Analysis and Mitigation

Threat Intelligence

Medusa Ransomware Targets Critical Infrastructure: Technical Analysis and Mitigation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing...

Fake DeepSeek Google Ads Deliver Malware: Technical Analysis & Mitigation

Malware Analysis

Fake DeepSeek Google Ads Deliver Malware: Technical Analysis & Mitigation

Cybercriminals are exploiting DeepSeek’s growing popularity by distributing malware through fake sponsored Google ads, according to a...

Grandoreiro Banking Trojan Resurfaces in Phishing Campaigns Targeting Latin America and Europe

APT-News

Grandoreiro Banking Trojan Resurfaces in Phishing Campaigns Targeting Latin America and Europe

The Grandoreiro banking trojan has reemerged in new phishing campaigns targeting users in Latin America and Europe,...

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

Threat Intelligence

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

A newly uncovered phishing-as-a-service (PhaaS) platform, named “Morphing Meerkat,” has been leveraging DNS mail exchange (MX) records...

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

Threat Intelligence

Morphing Meerkat PhaaS Operation Leverages DNS-over-HTTPS for Evasion

A newly identified phishing-as-a-service (PhaaS) operation, dubbed Morphing Meerkat by researchers, has adopted DNS-over-HTTPS (DoH) to bypass...

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Malware Analysis

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Elastic Security Labs has uncovered a sophisticated malware campaign targeting Iraq’s telecommunications sector, utilizing a new malware...

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

APT-News

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

Russian state-aligned hackers have launched a sophisticated phishing campaign impersonating the U.S. Central Intelligence Agency (CIA) to...

MailChimp Security Breaches: Phishing, Social Engineering, and Session Hijacking Tactics

Data Breach

MailChimp Security Breaches: Phishing, Social Engineering, and Session Hijacking Tactics

MailChimp, a widely used email marketing platform, has become a prime target for cybercriminals employing sophisticated phishing...

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

APT-News

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

An advanced persistent threat (APT) group linked to Pakistan has been observed impersonating India’s postal service to...

Morphing Meerkat PhaaS Exploits DNS MX Records to Target 114 Brands

Threat Intelligence

Morphing Meerkat PhaaS Exploits DNS MX Records to Target 114 Brands

A newly uncovered phishing-as-a-service (PhaaS) platform, dubbed Morphing Meerkat, is dynamically impersonating over 114 brands by abusing...

March 2025 Threat Intelligence Update: YARA, Snort Rules, and Emerging Ransomware Threats

Threat Intelligence

March 2025 Threat Intelligence Update: YARA, Snort Rules, and Emerging Ransomware Threats

Security teams worldwide must stay updated on the latest detection rules and emerging threats to defend against...

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

APT-News

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

In a coordinated international operation, INTERPOL has arrested 306 suspects and seized 1,842 electronic devices in a...

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

APT-News

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

Security researchers have identified a new campaign where threat actors are leveraging Microsoft’s .NET Multi-platform App UI...

February 2025 Financial Sector Cyber Threats: Korean & Global Security Analysis

Threat Intelligence

February 2025 Financial Sector Cyber Threats: Korean & Global Security Analysis

A recent ASEC report reveals intensifying cyber threats against financial institutions in South Korea and worldwide, with...

Critical PostgreSQL SQLi and Palo Alto VPN Exploits Targeted in Latest Snort Rules Update (Feb 2025 Week 4)

Threat Intelligence

Critical PostgreSQL SQLi and Palo Alto VPN Exploits Targeted in Latest Snort Rules Update (Feb 2025 Week 4)

AhnLab’s Threat Intelligence Platform has released 19 new Snort rules addressing critical vulnerabilities including PostgreSQL SQL injection...

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

APT-News

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

A sophisticated phishing campaign dubbed “0ktapus” successfully bypassed multi-factor authentication (MFA) protections to compromise over 130 organizations,...

Trojan.PS1.POWLOAD.JKP: COVID-19 Themed PowerShell Malware Targeting Italian Users

Malware Analysis

Trojan.PS1.POWLOAD.JKP: COVID-19 Themed PowerShell Malware Targeting Italian Users

A new variant of the POWLOAD Trojan has emerged, leveraging COVID-19 themes to target Italian users through...

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

Malware Analysis

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

Trojan.W97M.EMOTET.SMI is a variant of the notorious Emotet malware, primarily spread through malicious Microsoft Office documents. Despite...

How to Disable Fake System Notifications on macOS: A Security Professional’s Guide

News

How to Disable Fake System Notifications on macOS: A Security Professional’s Guide

Cybercriminals are exploiting macOS’s push notification system to distribute fake alerts mimicking legitimate system warnings. These malicious...

Posts pagination

Previous 1 2 3 4 5 6 Next

phishing

Center Parcs’ X Account Mishap: A Case Study in Digital Hygiene Failures

Medusa Ransomware Targets Critical Infrastructure: Technical Analysis and Mitigation

Fake DeepSeek Google Ads Deliver Malware: Technical Analysis & Mitigation

Grandoreiro Banking Trojan Resurfaces in Phishing Campaigns Targeting Latin America and Europe

Phishing-as-a-Service Platform Morphing Meerkat Exploits DNS MX Records to Spoof 100+ Brands

SHELBY Malware Campaign: GitHub Abuse for C2 Operations in Iraqi Telecom Attacks

Russian Cyber Espionage Campaign Impersonates CIA to Target Ukrainian Defense Intelligence

APT36 Targets Indian Users with Spoofed India Post Website Delivering Cross-Platform Malware

Morphing Meerkat PhaaS Exploits DNS MX Records to Target 114 Brands

March 2025 Threat Intelligence Update: YARA, Snort Rules, and Emerging Ransomware Threats

INTERPOL’s Global Cybercrime Crackdown: 306 Arrested, 1,842 Devices Seized

Hackers Exploit .NET MAUI to Deliver Fake Banking and Social Apps in India and China

February 2025 Financial Sector Cyber Threats: Korean & Global Security Analysis

Critical PostgreSQL SQLi and Palo Alto VPN Exploits Targeted in Latest Snort Rules Update (Feb 2025 Week 4)

0ktapus Phishing Campaign: How MFA Spoofing Compromised 130+ Organizations

Trojan.PS1.POWLOAD.JKP: COVID-19 Themed PowerShell Malware Targeting Italian Users

Trojan.W97M.EMOTET.SMI: Analyzing the Persistent Emotet Threat Targeting Windows Systems

How to Disable Fake System Notifications on macOS: A Security Professional’s Guide

You may have missed

Anthropic’s Claude AI Gains Autonomous Conversation Termination to Mitigate Abuse

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

Meta’s Erroneous Instagram Account Bans: Technical Implications for Security Teams

Supreme Court’s Decision on Mississippi Social Media Age Verification Law: Technical and Legal Implications