Cybercriminals Archives • Page 6 of 34 • Daily CyberSecurity

UAT-10608 Uses a Next.js “React2Shell” Flaw to Map Your Entire Cloud NEXUS Listener React2Shell Vulnerability

UAT-10608 Uses a Next.js “React2Shell” Flaw to Map Your Entire Cloud

Do Son April 7, 2026

Cisco Talos has revealed a major automated credential harvesting campaign, tracked as UAT-10608, that has already compromised...

The “Special Invitation” Trap: STAC6405 Abuses Legitimate RMM Tools to Hijack Your PC STAC6405 Phishing RMM Abuse

The “Special Invitation” Trap: STAC6405 Abuses Legitimate RMM Tools to Hijack Your PC

Do Son April 6, 2026

Cybercriminals are increasingly trading custom-built malware for legitimate software to slip past corporate defenses. A new investigation...

Hackers are Using “Legit” IT Tools to Hijack the 2026 Tax Season 2026 Tax Phishing RMM Abuse

Hackers are Using “Legit” IT Tools to Hijack the 2026 Tax Season

Do Son April 5, 2026

As the 2026 tax season reaches its peak, cybersecurity researchers have identified a massive surge in digital...

The Human Variable: How a Masterful Phishing Ruse Hijacked Axios and 100 Million Users Axios proxy vulnerabilities prototype pollution gadget Axios Vulnerability Cloud Hijacking Axios npm supply chain attack Axios Vulnerability Node.js DoS CVE-2025-58754 CVE-2025-27152 Axios Vulnerability, Form-Data Flaw

Axios proxy vulnerabilities prototype pollution gadget Axios Vulnerability Cloud Hijacking Axios npm supply chain attack Axios Vulnerability Node.js DoS CVE-2025-58754 CVE-2025-27152 Axios Vulnerability, Form-Data Flaw

The Human Variable: How a Masterful Phishing Ruse Hijacked Axios and 100 Million Users

Do Son April 3, 2026

The esteemed open-source library Axios, a staple of the contemporary industry, recently fell victim to a cyber...

TikTok for Business Under Siege: New Phishing Campaign Exploits “Login with Google” TikTok for Business Phishing AiTM Phishing Kit

TikTok for Business Under Siege: New Phishing Campaign Exploits “Login with Google”

Do Son April 3, 2026

Researchers at Push Security have identified and blocked a novel campaign targeting TikTok for Business accounts—the very...

NCSC’s High-Stakes Warning on State-Sponsored Hijacking of Your Messaging Apps Cyber Operations Messaging App Security State-Sponsored Hijacking

Cyber Operations Messaging App Security State-Sponsored Hijacking

NCSC’s High-Stakes Warning on State-Sponsored Hijacking of Your Messaging Apps

Do Son April 1, 2026

In an era where digital connectivity is the lifeblood of professional and personal life, the National Cyber...

The Reservation Hijack: When Your Hotel Booking Becomes a Cyber Trap Reservation Hijacking Hotel Phishing

The Reservation Hijack: When Your Hotel Booking Becomes a Cyber Trap

Do Son March 31, 2026

Imagine receiving a WhatsApp message from your hotel’s Guest Relations team just days before your family vacation....

Infiltrating the Infiltrators: Inside the Florida “Laptop Farm” and the DPRK’s Failed Strike on a Cyber Firm Conceptual network diagram of DPRK scam

Infiltrating the Infiltrators: Inside the Florida “Laptop Farm” and the DPRK’s Failed Strike on a Cyber Firm

Do Son March 30, 2026

In an attempt to infiltrate the cybersecurity industry itself, a suspected North Korean (DPRK) IT worker recently...

Tax Audits and WhatsApp Clones: How “Silver Fox” is Redefining Cyber-Espionage in South Asia WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

Tax Audits and WhatsApp Clones: How “Silver Fox” is Redefining Cyber-Espionage in South Asia

Do Son March 29, 2026

A new report from Sekoia’s Threat Detection & Research (TDR) team has detailed the curtain on Silver...

RedLine Infostealer Kingpin Extradited to U.S. to Face Federal Charges RedLine Infostealer Operation Magnus

RedLine Infostealer Kingpin Extradited to U.S. to Face Federal Charges

Do Son March 27, 2026

The global dragnet closing in on the world’s most prolific malware developers has secured a major victory....

The Contagious Interview: How NICKEL ALLEY Turns Your “Dream Job” into a North Korean Crypto Nightmare NICKEL ALLEY Contagious Interview

The Contagious Interview: How NICKEL ALLEY Turns Your “Dream Job” into a North Korean Crypto Nightmare

Do Son March 27, 2026

In a digital era where remote work and freelance gigs are the norm, a sophisticated threat group...

Tax Season Terror: Phishing Campaigns Weaponize Urgency to Deliver Remote Access Tools Tax Phishing ScreenConnect RAT

Tax Season Terror: Phishing Campaigns Weaponize Urgency to Deliver Remote Access Tools

Do Son March 24, 2026

As the April 15 tax deadline looms in the United States, a familiar digital predator has resurfaced....

The Ransomware ‘Locksmith’: Russian Access Broker Aleksei Volkov Sentenced to 7 Years for $9M Cyber Heist Initial Access Broker Aleksei Volkov

The Ransomware ‘Locksmith’: Russian Access Broker Aleksei Volkov Sentenced to 7 Years for $9M Cyber Heist

Do Son March 24, 2026

A 26-year-old Russian national has been sentenced to 81 months in prison for his pivotal role in...

Vibe-Coded Fraud: How AI Deepfakes and Digital ‘Cloaking’ Bypass Security to Drain Bank Accounts AI-Generated Scams Digital Cloaking

Vibe-Coded Fraud: How AI Deepfakes and Digital ‘Cloaking’ Bypass Security to Drain Bank Accounts

Do Son March 24, 2026

A sophisticated new wave of cybercrime is blending psychological manipulation with cutting-edge technology to drain the bank...

The CLAW Trap: How a Sophisticated Phishing Syndicate is Hunting Developers on GitHub OpenClaw crypto scam

The CLAW Trap: How a Sophisticated Phishing Syndicate is Hunting Developers on GitHub

Do Son March 23, 2026

The cybersecurity firm OX Security recently promulgated a report exposing an insidious cryptocurrency artifice targeting the OpenClaw...

Vibe Coding the Apocalypse: McAfee Uncovers AI-Generated Malware Scaling Global Attacks AI-Generated Malware Vibe Coding Attacks

Vibe Coding the Apocalypse: McAfee Uncovers AI-Generated Malware Scaling Global Attacks

Do Son March 23, 2026

A widespread malware campaign has been caught casting a massive net across the internet, hiding malicious code...

The AI-Powered Arsenal: How ‘Forbidden Hyena’ Uses Generative AI to Spawn BlackReaperRAT Forbidden Hyena BlackReaperRAT

The AI-Powered Arsenal: How ‘Forbidden Hyena’ Uses Generative AI to Spawn BlackReaperRAT

Do Son March 20, 2026

A detailed forensic investigation by BI.ZONE Threat Intelligence has unmasked a series of advanced cyber operations conducted...

Takedown: DOJ Seizes Iranian MOIS Domains Used for Global Hacking and Hit Squad Threats Iranian Cyberwarfare DOJ Domain Seizure

Takedown: DOJ Seizes Iranian MOIS Domains Used for Global Hacking and Hit Squad Threats

Do Son March 20, 2026

The U.S. Department of Justice has struck a major blow against the Islamic Republic of Iran’s cyberwarfare...

Hijacked Accounts and AI Code: The Deadly New Playbook of Iranian APT ‘Boggy Serpens’ Boggy Serpens Iranian APT

Hijacked Accounts and AI Code: The Deadly New Playbook of Iranian APT ‘Boggy Serpens’

Do Son March 20, 2026

A new assessment from Unit 42 reveals a significant maturation in the tactics of Boggy Serpens, an...

GemStuffer RubyGems Campaign RubyGems Data Exfiltration TanStack npm Compromise Supply Chain Attack DNS Hijacking APT28 (Fancy Bear) OpenVSX Supply Chain Attack Checkmarx Plugin Breach Stryker Cyberattack CISA Alert Trans-Regional Cyber Conflict Operation Epic Fury Cyber Operation MacroMaze APT28 Cyber Espionage Notepad++ Supply Chain Attack Lotus Blossom Group Defense Industrial Base Threats GTIG Report APT28 Operation Neusploit CVE-2026-21509 Bookworm Malware

CISA Issues Urgent Warning Following Global Cyberattack on Stryker

Do Son March 19, 2026

In a move to protect the nation’s critical infrastructure, the Cybersecurity and Infrastructure Security Agency (CISA) has...

Critical Alert 1 Active Exploit Detected Today