New TLD Based Phishing Campaign
A researcher gone by the name mr.d0x has discovered a new phishing technique that can leverage the file archiver in browser exploit to emulate an archiving software in the web…
DarkWatchman RAT Dissection
A Russian based website CryptoPro CSP has been imitated by the attackers to spread the DarkWatchman RAT. The phishing campaign primarily targets Russian users and was first detected in 2021. …
Evil Extractor Malware Steals Browser Data
Researchers have spotted a stealer malware named as Evil Extractor (originally marketed as an educational tool) is being marketed for sale for other threat actors to steal data and files…
Winter Vivern exploits Zimbra Vulnerability
Researchers have spotted a phishing campaign from the Russian APT group known as Winter Vivern, TA473, and UAC-0114 exploiting a vulnerability in Zimbra Collaboration software to hack the emails of government…
ChatGPT getting used in Phishing Campaigns
Researchers have warned of new Windows and Android phishing campaigns using ChatGPT to trick users into unwittingly downloading malware and handing over their credit card details. Several of the phishing…
NewsPenguin Phishing Campaign
Researchers have spotted a espionage campaign from a novel threat actor called NewsPenguin against Pakistan's military-industrial complex for months, using an advanced malware tool. PIMEC (Pakistan International Maritime Expo) a…
IceID Malware Malvertised Zoom Installer
Researchers discovered a phishing campaign targeting Zoom users to deliver the IcedID malware. IcedID is a banking trojan that has capabilities like other financial threats like Gozi, Zeus, and Dridex.…
Lazarus Group Amazon Theamed Campaign
Researchers have spotted Lazarus Group - North Korean state-sponsored threat approaching individuals with fake job offers from Amazon. Those accepted the offer, and downloaded fake job description PDF files, have…