phishing Archives • Page 11 of 17 • Daily CyberSecurity

LARVA-208: New Web3 Phishing Campaign Leverages Fake AI Platforms & Job Lures to Steal Crypto jobs

LARVA-208: New Web3 Phishing Campaign Leverages Fake AI Platforms & Job Lures to Steal Crypto

Do Son July 22, 2025

A recent investigation by cybersecurity firm PRODAFT has uncovered a targeted and cunning phishing campaign by the...

Scanception: Global QR Code Phishing Campaign Bypasses Enterprise Security, Steals Credentials at Scale QR Code Phishing, Credential Harvesting

Scanception: Global QR Code Phishing Campaign Bypasses Enterprise Security, Steals Credentials at Scale

Do Son July 21, 2025

Cyble Research and Intelligence Labs (CRIL) has uncovered an ongoing global phishing campaign that weaponizes QR codes...

China-Aligned APTs Intensify Cyber Espionage on Taiwan’s Semiconductor Industry China Cyber-espionage, Taiwan Semiconductors

China-Aligned APTs Intensify Cyber Espionage on Taiwan’s Semiconductor Industry

Do Son July 21, 2025

A new report from Proofpoint Threat Research sheds light on a coordinated espionage campaign by multiple China-aligned...

SilentRoute: Trojanized SonicWall VPN Client Used to Steal Enterprise Credentials SonicWall Malware, Supply Chain Attack

SilentRoute: Trojanized SonicWall VPN Client Used to Steal Enterprise Credentials

Do Son July 21, 2025

In a newly uncovered software supply chain attack, threat actors have successfully deployed a backdoored version of...

Major npm Supply Chain Attack: Phishing Campaign Steals Maintainer Credentials, Injects Malware into Popular Packages npm Phishing, Supply Chain Attack

Major npm Supply Chain Attack: Phishing Campaign Steals Maintainer Credentials, Injects Malware into Popular Packages

Do Son July 19, 2025

A deceptive and highly targeted phishing campaign has successfully compromised several popular npm packages, including eslint-config-prettier, eslint-plugin-prettier,...

GitHub Abused in Amadey MaaS Campaign: Talos Uncovers Malware-as-a-Service Network Leveraging Public Repositories GitHub MaaS, Emmenhtal Loader

GitHub Abused in Amadey MaaS Campaign: Talos Uncovers Malware-as-a-Service Network Leveraging Public Repositories

Do Son July 18, 2025

Cisco Talos has uncovered a multi-pronged Malware-as-a-Service (MaaS) operation exploiting public GitHub repositories to distribute a wide...

Warning: Fake Remittance Apps Target Bangladeshi Expats, Stealing IDs & Financial Data Android Malware, Phishing Campaign

Warning: Fake Remittance Apps Target Bangladeshi Expats, Stealing IDs & Financial Data

Do Son July 16, 2025

McAfee’s Mobile Research Team has uncovered a highly active Android malware campaign targeting Bengali-speaking users, particularly Bangladeshi...

New PhantomRemote Backdoor Targets Russian Healthcare & IT, Linked to Rainbow Hyena Attacks PhantomRemote Backdoor, Rainbow Hyena

New PhantomRemote Backdoor Targets Russian Healthcare & IT, Linked to Rainbow Hyena Attacks

Do Son July 16, 2025

A new wave of phishing attacks has been observed sweeping across Russia’s healthcare and IT sectors, attributed...

MoonPay CEO Falls Victim to Crypto Scam: Imposter Steve Witkoff Dupes Executive for $250K Crypto Scam, Executive Fraud business email compromise scam

Crypto Scam, Executive Fraud business email compromise scam

MoonPay CEO Falls Victim to Crypto Scam: Imposter Steve Witkoff Dupes Executive for $250K

Do Son July 14, 2025

The cryptocurrency industry is no stranger to scams, yet it’s rare to see senior executives of crypto...

Red Bull Job Scam Exposed: Phishing Campaign Spoofs Brands, Uses “Slow Kill” Tactics to Steal Credentials

Do Son July 14, 2025

Phishing remains one of the most enduring threats to cybersecurity—not for a lack of technological defense, but...

Google Uncovers Massive Phishing Scam Exploiting Booking.com Users layout

Google Uncovers Massive Phishing Scam Exploiting Booking.com Users

Do Son July 14, 2025

In a sweeping investigation into cybercrime infrastructure, Google Threat Intelligence has exposed a vast, ongoing phishing campaign...

DoNot APT Expands to Europe: Targets Foreign Ministry with LoptikMod Malware via Google Drive Phishing DoNot APT, European Cyberespionage

DoNot APT Expands to Europe: Targets Foreign Ministry with LoptikMod Malware via Google Drive Phishing

Do Son July 11, 2025

In a newly uncovered campaign, the DoNot APT group—also tracked as APT-C-35, Mint Tempest, Origami Elephant, and...

NetSupport RAT Returns: Weaponized via WordPress & “ClickFix” for Remote Access NetSupport RAT, ClickFix Technique

NetSupport RAT Returns: Weaponized via WordPress & “ClickFix” for Remote Access

Do Son July 8, 2025

Recently, security researchers at the Cybereason Global Security Operations Center (GSOC) discovered a highly deceptive malware campaign...

Phishing Alert: Fake WeTransfer & HunCERT Pages Hosted on AWS S3 & Cloudflare Turnstile Stealing Credentials Phishing, File Sharing Scam

Phishing Alert: Fake WeTransfer & HunCERT Pages Hosted on AWS S3 & Cloudflare Turnstile Stealing Credentials

Do Son July 8, 2025

The Cyble Research and Intelligence Labs (CRIL) has exposed an active and highly targeted phishing campaign that...

XwormRAT Resurfaces with Steganography-Powered Attack Chain

Do Son July 8, 2025

The AhnLab Security Intelligence Center (ASEC) has raised fresh concerns over the reemergence of XwormRAT, a notorious...

APT36 Unleashes Linux Malware: Transparent Tribe Targets Indian Government with Go-Based Espionage Tools APT36 Linux, BOSS Linux

APT36 Unleashes Linux Malware: Transparent Tribe Targets Indian Government with Go-Based Espionage Tools

Do Son July 7, 2025

A newly uncovered campaign by Pakistani threat actor APT36, also known as Transparent Tribe, reveals a significant...

Malicious Firefox Extensions Unmasked: Fake Games, VPNs, & Calendar Tools Hijack Traffic, Steal Crypto & OAuth Tokens Firefox Extensions, Malware Campaign

Malicious Firefox Extensions Unmasked: Fake Games, VPNs, & Calendar Tools Hijack Traffic, Steal Crypto & OAuth Tokens

Do Son July 7, 2025

A new report by the Socket Threat Research Team has uncovered a sprawling network of malicious Firefox...

Global E-commerce Fraud Ring Uncovered: Fake Apple, Nordstrom, Brooks Brothers Sites Steal Credit Cards E-commerce Fraud, Phishing Campaign

Global E-commerce Fraud Ring Uncovered: Fake Apple, Nordstrom, Brooks Brothers Sites Steal Credit Cards

Do Son July 3, 2025

A sprawling network of fake e-commerce websites—masquerading as legitimate retailers like Apple, Brooks Brothers, and Nordstrom—has been...

DCRat: Sophisticated RAT Delivered via Phishing Campaign Impersonating Government Entity axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

DCRat: Sophisticated RAT Delivered via Phishing Campaign Impersonating Government Entity

Do Son July 3, 2025

In a recent threat intelligence report, the FortiMail Incident Response (IR) team exposed a new email campaign...

Chinese Student Jailed for Smishing: Operated Covert “SMS Blaster” in Car for Mass Phishing Smishing, SMS Blaster

Chinese Student Jailed for Smishing: Operated Covert “SMS Blaster” in Car for Mass Phishing

Do Son July 2, 2025

A Chinese student has been sentenced to over a year in prison by Inner London Crown Court...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

phishing

Scanception: Global QR Code Phishing Campaign Bypasses Enterprise Security, Steals Credentials at Scale

China-Aligned APTs Intensify Cyber Espionage on Taiwan’s Semiconductor Industry

SilentRoute: Trojanized SonicWall VPN Client Used to Steal Enterprise Credentials

Major npm Supply Chain Attack: Phishing Campaign Steals Maintainer Credentials, Injects Malware into Popular Packages

GitHub Abused in Amadey MaaS Campaign: Talos Uncovers Malware-as-a-Service Network Leveraging Public Repositories

Warning: Fake Remittance Apps Target Bangladeshi Expats, Stealing IDs & Financial Data

New PhantomRemote Backdoor Targets Russian Healthcare & IT, Linked to Rainbow Hyena Attacks

MoonPay CEO Falls Victim to Crypto Scam: Imposter Steve Witkoff Dupes Executive for $250K

DoNot APT Expands to Europe: Targets Foreign Ministry with LoptikMod Malware via Google Drive Phishing

XwormRAT Resurfaces with Steganography-Powered Attack Chain

APT36 Unleashes Linux Malware: Transparent Tribe Targets Indian Government with Go-Based Espionage Tools

Malicious Firefox Extensions Unmasked: Fake Games, VPNs, & Calendar Tools Hijack Traffic, Steal Crypto & OAuth Tokens

Global E-commerce Fraud Ring Uncovered: Fake Apple, Nordstrom, Brooks Brothers Sites Steal Credit Cards

Chinese Student Jailed for Smishing: Operated Covert “SMS Blaster” in Car for Mass Phishing