PureLogs Stealer uses fake PDF JavaScript files and Google's Blogger pages in the VEIL#DROP campaign, enabling fileless ...
Microsoft says hotel phishing emails are using Calendly links and photo ZIP files to drop the TonRAT Node.js implant on front ...
The latest email threats: real Microsoft login phishing, device code scams with a kill switch, split-click attacks, and the ...
A new Mac infostealer dubbed PamStealer impersonates the open-source Maccy clipboard manager to steal passwords and more.
Jamf Threat Labs has issued a report on new malware that users of the third-party clipboard manager Maccy need to be aware of ...
Opera GX patched a flaw that let malicious sites silently install GX Mods and leak a signed-in user’s Gmail address with CSS.
Securonix uncovers the Veil#Drop malware framework, which abuses compromised websites and Google Blogspot to deploy the PureLog information stealer.
SocGholish uses traffic distribution systems (TDSs) to provide initial access into victims' networks for cybercrime groups ...
Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud supply-chain attack that delivered malware designed to steal developer secrets.
Separate but similar campaigns described by Microsoft and Trend Micro use malicious zip files to spread malware via social ...
Fiercely independent and pro-consumer information on personal finance. Complete access to Moneylife archives since inception ...