YoWhatsApp, an unauthorized WhatsApp Android app, has a new version that has been discovered to steal account access keys from users. YoWhatsApp is a fully functional chat app that uses the same permissions as the default WhatsApp app. And is…
The Vulnerability According to recent data from ThreatFabric, malicious actors are using voice phishing (vishing) techniques to trick victims into installing Android banking malware on their handsets. The Dutch mobile security firm claimed to have discovered a network of phishing…
As people get ready to file their 2020–2022 tax returns, the UK government has issued a warning to be on the lookout for phoney tax rebate frauds (tax scams). Even in the best of circumstances, making sure your self-employed paperwork…
A Hacker Wants the Victims of His Theft to Approve of His Robbery. When using cryptocurrencies, things operate differently. Having stolen $117 million in digital assets from decentralized finance exchange Mango Markets Hack, the hacker has now offered to return…
WordPress installations at risk from a cache poisoning attack due to faked password resets. Security researchers caution that hidden DNS resolvers can be used to launch account takeover and email redirection attacks. The renowned network security researcher Dan Kaminsky originally…
The individuals who created the BazaCall callback phishing technique have kept up with new social engineering techniques to spread malware on targeted networks. The Vulnerability According to a report released last week by cybersecurity firm Trellix, the plan eventually serves…
Security experts have discovered previously undiscovered Creepy Malware that is employed by the threat actors that appear to target Israeli firms only, members of the cyber espionage hacker group “POLONIUM.” ESET claims that POLONIUM targets engineering, IT, legal, communications, and…
Major aspects of our everyday life have gradually shifted to some degree of Internet access over the past couple of years. Smartphones and other gadgets are becoming essential. Bills to be paid? Those programmes are now online. Tax? Online. Bank…
Threat actors can easily launch attacks thanks to the “Caffeine” phishing-as-a-service (PhaaS) platform (Microsoft 365 Phishing Attacks), which has an open registration process that enables anybody to join and launch their own phishing campaigns. Caffeine does not require invites, recommendations,…
According to recent research from VMware, emotet delivery and evasion techniques used in recent attacks revealed, threat actors linked to the infamous Emotet virus are constantly changing their strategies. And command-and-control (C2) infrastructure to avoid detection. The threat actor known…
