As people get ready to file their 2020–2022 tax returns, the UK government has issued a warning to be on the lookout for phoney…
phishing emails
cyberattack campaign
ZINC’s use of open-source software as a weapon
Microsoft has recently discovered social engineering activities by an actor we trace as ZINC that weaponized legal open-source software. In the US, UK, India,…
Malware
Agent Tesla malware is distributed by cybercriminals using Quantum Builder, a product sold on the dark web.
Agent Tesla’s remote access trojan is distributed using Quantum Builder, a newly identified malware creator (RAT). When compared to earlier attacks of this type,…
Account Takeover
Hackers Take Advantage of Users’ Desire to be Verified by Instagram
Threat actors harvest user credentials by exploiting Instagram’s highly sought-after verification programme. Vade discovered a sophisticated and targeted phishing campaign aimed at luring Instagram…
Data Breach
A student loan breach has exposed 2.5 million records.
In a breach that could lead to further problems, 2.5 million people were affected. Over 2.5 million loanees have been notified by EdFinancial and…
General
Large-Scale AITM Attacks Targeting Enterprise Users: Researchers Warn
A new, widespread phishing campaign has been seen that circumvents security measures and compromises workplace email accounts by leveraging adversary-in-the-middle (AitM) tactics. It employs…
General
Ukraine-Targeting Malware Indicators Revealed By US Cyber Command
In an effort to stop hackers and emphasize America’s tight ties with Kyiv, the U.S. military publicly disclosed a number of malware indications in…
General
Emotnet stealing credit card data from Google Chrome
The infamous Emotnet malware has been deploying a new module to steal credit card information stored in the Chrome web browser. The credit card…
General
Cryptocurrency miners have Dockers, AWS and Alibaba cloud in their crosshair
LemonDuck, a cross-platform cryptocurrency mining botnet, is attacking Docker to steal cryptocurrency on Linux systems. The attacks form part of a bigger malware campaign.…
General
The Qbot malware has switched to a new infection vector: Windows Installer
Phishing emails with password-protected ZIP archive attachments containing malicious MSI Windows Installer packages are now being used by the Qbot botnet to spread malware…