phishing Archives • Page 13 of 17 • Daily CyberSecurity

PylangGhost: North Korean APT Deploys Python-Based RAT to Target Crypto Professionals North Korean APT, PylangGhost

PylangGhost: North Korean APT Deploys Python-Based RAT to Target Crypto Professionals

Do Son June 20, 2025

Recently, Cisco Talos unveiled a new Python-based remote access trojan (RAT) dubbed PylangGhost, used exclusively by a...

Elastic Uncovers Stealthy Campaign Using GHOSTPULSE and ARECHCLIENT2 Malware Fake captcha

Elastic Uncovers Stealthy Campaign Using GHOSTPULSE and ARECHCLIENT2 Malware

Do Son June 19, 2025

Elastic Security Labs has revealed a highly sophisticated multi-stage attack chain exploiting a social engineering method dubbed...

Invoice to Infection: Sorillus RAT Campaign Strikes European Organizations

Do Son June 19, 2025

A fresh wave of targeted cyberattacks is sweeping across Europe, leveraging invoice-themed phishing emails and weaponizing legitimate...

Taiwan Under Attack: Sophisticated Phishing Campaign Delivers Winos 4.0, HoldingHands RAT, & Gh0stCringe Taiwan Cyberattack, Phishing Campaign

Taiwan Under Attack: Sophisticated Phishing Campaign Delivers Winos 4.0, HoldingHands RAT, & Gh0stCringe

Do Son June 18, 2025

In a detailed investigation published by FortiGuard Labs, a persistent and highly coordinated malware campaign has been...

Kimsuky APT Group Abuses HWP and AnyDesk for Covert Remote Surveillance

Do Son June 18, 2025

The North Korean threat actor Kimsuky has been spotted deploying yet another advanced phishing campaign—this time leveraging...

Team46 (TaxOff) Exploits Google Chrome Zero-Day (CVE-2025-2783) in Sophisticated Phishing Campaign Team46 APT, Google Chrome Zero-Day

Team46 (TaxOff) Exploits Google Chrome Zero-Day (CVE-2025-2783) in Sophisticated Phishing Campaign

Do Son June 17, 2025

In a major revelation, the Threat Intelligence Department of the Positive Technologies Expert Security Center (PT ESC)...

Google Play Store Alert: New Phishing Apps Bypass Security, Stealing Crypto Wallet Seeds Crypto Phishing Apps, Google Play Store

Google Play Store Alert: New Phishing Apps Bypass Security, Stealing Crypto Wallet Seeds

Do Son June 16, 2025

Both the Apple App Store and Google Play Store are frequently found to host malicious applications, despite...

Katz Stealer: New Stealthy MaaS Steals Everything, Hides in Images, and Hijacks Discord

Do Son June 16, 2025

In 2025, cybersecurity analysts witnessed the emergence of a sophisticated and highly evasive info-stealer known as Katz...

New Malware Duo HijackLoader & DeerStealer Surge: Bypassing Defenses for Data Theft Attack chain diagram

New Malware Duo HijackLoader & DeerStealer Surge: Bypassing Defenses for Data Theft

Do Son June 16, 2025

Recently, eSentire’s Threat Response Unit (TRU) uncovered an alarming surge in campaigns leveraging a malware duo: HijackLoader...

Discord Invite System Hijacked: Expired Links Now Lead to Crypto-Stealing Malware

Do Son June 15, 2025

In the latest expose from Check Point Research, Discord’s once-trusted invite system has been turned against its...

HelloTDS Unmasked: Covert Traffic System Funnels Millions to FakeCaptcha Malware!

Do Son June 13, 2025

A complex and evasive infrastructure dubbed HelloTDS is silently steering millions of internet users into the clutches...

Warning: Don’t Blindly Click “Unsubscribe” Links! It Could Be a Cybersecurity Trap Unsubscribe Links, Cybersecurity

Warning: Don’t Blindly Click “Unsubscribe” Links! It Could Be a Cybersecurity Trap

Do Son June 12, 2025

Ordinarily, when we receive commercial advertisements or spam emails, it becomes second nature to click the “unsubscribe”...

MFA Bypass Alert: AitM Phishing Surges with Industrialized PhaaS Kits Targeting Microsoft 365 & Google Accounts!

Do Son June 12, 2025

A new global threat assessment from Sekoia.io’s Threat Detection & Research (TDR) team reveals an escalation in...

BlackSuit Affiliates Continue Social Engineering Attacks with Upgraded Java RAT and Cloud Abuse The credential harvesting window used by the Java RAT

The credential harvesting window used by the Java RAT

BlackSuit Affiliates Continue Social Engineering Attacks with Upgraded Java RAT and Cloud Abuse

Do Son June 12, 2025

Rapid7’s latest threat intelligence report shines a spotlight on the evolving tactics of threat actors formerly affiliated...

“GhostVendors”: Thousands of Fake Domains Exploit Facebook Ads in Massive Retail Scam

Do Son June 11, 2025

Cyber threat analysts at Silent Push have uncovered a sprawling digital fraud operation dubbed “GhostVendors”, a fake...

Librarian Ghouls APT: The Threat Actor Turning Legitimate Tools into a Cybercrime Toolkit

Do Son June 10, 2025

A stealthy Advanced Persistent Threat (APT) group tracked as Librarian Ghouls—also known by aliases Rare Werewolf and...

Behind the Followers: Malicious Python Package Harvests Instagram Credentials Instagram Malware, Credential Harvesting

Behind the Followers: Malicious Python Package Harvests Instagram Credentials

Do Son June 10, 2025

Socket’s Threat Research Team has uncovered ‘imad213’, a credential-harvesting tool masquerading as an Instagram booster. Behind its...

SoraAI.lnk: Beware of This New Info-Stealer Hiding as OpenAI’s Sora

Do Son June 10, 2025

A new info-stealer malware named SoraAI.lnk is leveraging the popularity of OpenAI’s video model, Sora, to infect...

FormBook Returns: Exploiting CVE-2017-0199 via Malicious Excel Attachments in New Phishing Campaign Demo for CVE-2017-0199

FormBook Returns: Exploiting CVE-2017-0199 via Malicious Excel Attachments in New Phishing Campaign

Do Son June 9, 2025

FortiGuard Labs has uncovered a renewed phishing campaign that leverages the eight-year-old CVE-2017-0199 vulnerability to deploy FormBook,...

TA397’s Global Targeting Tactics Reveal Indian State-Backed Cyber Operations TA397, India Cyber Espionage

TA397’s Global Targeting Tactics Reveal Indian State-Backed Cyber Operations

Do Son June 7, 2025

A new report from Proofpoint Threat Research, in collaboration with Threatray, reveals mounting evidence that TA397 (also...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

phishing

PylangGhost: North Korean APT Deploys Python-Based RAT to Target Crypto Professionals

Invoice to Infection: Sorillus RAT Campaign Strikes European Organizations

Taiwan Under Attack: Sophisticated Phishing Campaign Delivers Winos 4.0, HoldingHands RAT, & Gh0stCringe

Kimsuky APT Group Abuses HWP and AnyDesk for Covert Remote Surveillance

Team46 (TaxOff) Exploits Google Chrome Zero-Day (CVE-2025-2783) in Sophisticated Phishing Campaign

Google Play Store Alert: New Phishing Apps Bypass Security, Stealing Crypto Wallet Seeds

Katz Stealer: New Stealthy MaaS Steals Everything, Hides in Images, and Hijacks Discord

Discord Invite System Hijacked: Expired Links Now Lead to Crypto-Stealing Malware

Warning: Don’t Blindly Click “Unsubscribe” Links! It Could Be a Cybersecurity Trap

MFA Bypass Alert: AitM Phishing Surges with Industrialized PhaaS Kits Targeting Microsoft 365 & Google Accounts!

“GhostVendors”: Thousands of Fake Domains Exploit Facebook Ads in Massive Retail Scam

Librarian Ghouls APT: The Threat Actor Turning Legitimate Tools into a Cybercrime Toolkit

SoraAI.lnk: Beware of This New Info-Stealer Hiding as OpenAI’s Sora

FormBook Returns: Exploiting CVE-2017-0199 via Malicious Excel Attachments in New Phishing Campaign

TA397’s Global Targeting Tactics Reveal Indian State-Backed Cyber Operations