Tushar Subhra Dutta

The notorious Phorpiex botnet is back, spreading ransomware and sextortion schemes. Millions are at risk as it targets users globally. Stay alert and protect your devices from this evolving threat.

A new malware campaign is targeting industrial suppliers with fake Boeing RFQ emails. This sophisticated attack uses multiple file types to evade detection. Organizations need to be aware and take action to protect themselves.

A new scam is targeting travelers by hijacking hotel booking systems. Cybercriminals send fake payment requests via WhatsApp, tricking guests into revealing sensitive information. Awareness and caution are essential to avoid falling victim to this fraud.

A new remote access trojan, ResokerRAT, is using Telegram to control infected Windows machines. This malware captures screenshots and disables security features, making it a serious threat. Users are advised to monitor their systems closely to prevent infection.

EvilTokens is a new phishing-as-a-service platform that exploits Microsoft device code authentication to facilitate account takeovers. Researchers warn of its advanced capabilities and global reach.

GhostSocks malware is turning compromised devices into residential proxies for cybercriminals. This stealthy tactic poses serious risks for users and organizations alike. Security teams must act swiftly to mitigate potential threats.

A new malware called BlankGrabber is stealthily stealing sensitive data using a fake certificate loader. It targets everyday users through deceptive downloads. The risk of losing personal and financial information is significant. Stay vigilant and protect your systems.

Cybercriminals are ramping up attacks on financial firms using PXA Stealer malware. This sophisticated threat follows the dismantling of major infostealer operations, increasing risks for sensitive data. Organizations must enhance their defenses to combat this growing menace.

A new criminal marketplace called Leak Bazaar has emerged, turning stolen corporate data into organized intelligence. This service targets high-value corporate information, raising serious concerns about data exposure risks. Organizations must act quickly to protect their data from this evolving threat.

APT-Q-27 is targeting Web3 support teams with fake screenshot links that install multi-stage malware. This poses a serious risk to customer service operations and sensitive data. Organizations must stay vigilant and implement protective measures.

Kiss Loader malware has been detected, using advanced techniques to infiltrate Windows systems. Users are at risk if they open unverified files. Security teams must act quickly to mitigate this threat.

A new malware campaign is using obfuscated VBS files and PNG loaders to deploy RATs. Organizations are at risk as this sophisticated attack reveals a complex multi-stage operation. Immediate protective measures are crucial to safeguard systems from these threats.

A new variant of Pay2Key ransomware is targeting Linux systems, threatening organizational servers and cloud workloads. This poses significant risks to businesses. Stay vigilant and protect your infrastructure.

A persistent threat actor is targeting MS-SQL servers using new malware. This ongoing campaign risks extensive data exposure due to poor database security practices. Administrators must act now to secure their systems.

A new dark web site called ALP-001 has emerged, linked to an active Initial Access Broker. This site indicates a dangerous shift towards data extortion in cybercrime. Organizations should be vigilant and enhance their security measures to mitigate risks.

A new malvertising campaign is exploiting tax season to deploy an EDR killer. Targeting U.S. taxpayers, this attack uses fake Google Ads to bypass security tools. Stay vigilant and only download forms from trusted sources.

A coordinated espionage campaign has struck a Libyan oil refinery and telecom organization. Using AsyncRAT, attackers have raised serious concerns about the security of Libya's critical infrastructure. With the energy sector's significance rising, this incident highlights the need for enhanced cybersecurity measures.

A new Android RAT, Oblivion, is turning fake Play Store updates into a full-scale spyware operation. This malware poses severe risks to users' privacy and security. Stay alert and protect your devices from this sophisticated threat.

The FBI and Thai authorities are cracking down on scam centers in Southeast Asia that target Americans. These operations have caused over $2.9 billion in losses. It's crucial to stay vigilant and report any suspicious activity.

A new malicious package named pyronut has been found on PyPI, targeting Telegram bot developers. This package can backdoor bots, allowing hackers to execute remote commands. Developers must act quickly to secure their systems and data.

A botnet linked to Iran was exposed due to an open directory leak. This incident revealed a 15-node relay network and DDoS tools. Organizations must strengthen their defenses against such sophisticated cyber threats.

A new malware called StoatWaffle has been deployed by WaterPlum, a North Korea-linked group. This stealthy attack targets developers through compromised VSCode repositories. It poses significant risks by silently stealing sensitive data and providing attackers with remote access. Vigilance and security measures are crucial to combat this threat.

FancyBear's server exposure has revealed a major espionage campaign targeting NATO-linked organizations. Stolen credentials and 2FA secrets raise significant security concerns. Immediate action is required to mitigate risks.

A fake Telegram download site is spreading malware disguised as a legitimate installer. Users risk severe system compromises through simple URL typos. Stay vigilant and only download from verified sources.