FileFix attack tricks users into running image-borne malware
A new social engineering “hack yourself” attack that tricks victims into executing malware through seemingly innocent file upload processes has been discovered by backup and…
Latest Cybersecurity News — Page 1437
View all →
New Magecart Skimmer Attack With Malicious JavaScript Injection to Skim Payment Data
The threat landscape for e-commerce websites has once again shifted with the emergence of a sophisticated Magecart-style attack campaign, characterized by the deployment of obfuscated…
New Magecart Attack Injects Malicious JavaScript to Steal Payment Data
A new Magecart-style campaign has emerged that leverages malicious JavaScript injections to skim payment data from online checkout forms. The threat surfaced after security researcher…
TA558 Uses AI-Generated Scripts to Deploy Venom RAT in Brazil Hotel Attacks
The threat actor known as TA558 has been attributed to a fresh set of attacks delivering various remote access trojans (RATs) like Venom RAT to…
BreachForums Founder Sentenced To Three Years
BreachForums founder Conor Brian Fitzpatrick has been resentenced to three years in prison on charges related to operation of the notorious cybercrime forum and possession…
Microsoft Dismantles 300+ Websites Used to Distribute RaccoonO365 Phishing Service
Since mid-2024, cybercriminals have leveraged a subscription-based phishing platform known as RaccoonO365 to harvest Microsoft 365 credentials at scale. Emerging as an off-the-shelf service, RaccoonO365…
China-Aligned TA415 Exploits Google Sheets & Calendar for C2
China-aligned TA415 hackers have adopted Google Sheets and Google Calendar as covert command-and-control (C2) channels in a sustained espionage campaign targeting U.S. government, academic, and…
VC giant Insight Partners warns thousands after ransomware breach
New York-based venture capital and private equity firm Insight Partners is notifying thousands of individuals whose personal information was stolen in a ransomware attack. The…
New Raven Stealer Malware Hits Browsers for Passwords and Payment Data
A new sneaky type of malware, known as Raven Stealer, has been identified by the Lat61 Threat Intelligence Team at Point Wild. The research team,…
Russia-Linked Hybrid Campaign Targeted 2024 Elections: Romanian Prosecutor General
Romanian prosecutor general this week said investigators uncovered a large, coordinated hybrid campaign that sought to skew the 2024 presidential vote in favor of a…
224 Malicious Android Apps on Google Play With 38 Million Downloads Delivering Malicious Payloads
A sophisticated mobile ad fraud operation dubbed “SlopAds” has infiltrated Google Play Store with 224 malicious applications that collectively amassed over 38 million downloads across…
Agentless Access, Sensitive Data Masking, and Smooth Session Playback
Syteca, a global cybersecurity provider, introduced the latest release of its platform, continuing the mission to help organizations reduce insider risks and ensure sensitive data…