credential theft – Threat Note

From Dark Reading – Scattered Spider’s ‘King Bob’ Pleads Guilty to Cyber Charges

The 20-year-old was arrested in January 2024 alongside four other group members who carried out related cybercriminal acts, earning them similar charges. Read More

shaikh Saqib April 7, 2025

News

From Cyber Security News – DarkCloud – An Advanced Stealer Malware Selling Via Telegram To Steal Data From Windows

DarkCloud is a sophisticated stealer malware that emerged in 2022, quickly positioning itself as one of the most prevalent threats in its category. This Windows-targeting malware has evolved significantly to…

shaikh Saqib March 31, 2025

News

From Cyber Security News – Hackers Leveraging DNS MX Records To Dynamically Create Fake Logins Mimic as 100+ Brands

A sophisticated phishing operation has emerged that creatively leverages DNS mail exchange (MX) records to dynamically serve fake login pages tailored to victims’ email providers. The attack can mimic over…

shaikh Saqib March 29, 2025

News

From Dark Reading – Evilginx Tool (Still) Bypasses MFA

Based on the open source NGINX Web server, the malicious tool allows threat actors to steal user credentials and session tokens. Read More

shaikh Saqib March 29, 2025

News

From Security Week – Morphing Meerkat Phishing Kits Target Over 100 Brands

[[{"value":"A threat actor tracked as Morphing Meerkat abuses DNS mail exchange (MX) records to deliver spoofed login pages. The post Morphing Meerkat Phishing Kits Target Over 100 Brands appeared first…

shaikh Saqib March 28, 2025

News

From Security Week – Fresh Grandoreiro Banking Trojan Campaigns Target Latin America, Europe

[[{"value":"The Grandoreiro banking trojan has reemerged in new campaigns targeting users in Latin America and Europe. The post Fresh Grandoreiro Banking Trojan Campaigns Target Latin America, Europe appeared first on…

shaikh Saqib March 28, 2025

News

From Cyber Security News – SectopRAT as Weaponized Cloudflare Turnstile Challenge Attacks Windows Users

A sophisticated new malware strain dubbed SectopRAT has emerged, leveraging Cloudflare’s Turnstile challenge system as part of its attack methodology. This Remote Access Trojan specifically targets Windows users through a…

shaikh Saqib March 26, 2025

News

From Cyber Security News – FBI Warns of File Convertor Tools Used to Deploy Ransomware

The Federal Bureau of Investigation’s Denver Field Office has issued an urgent alert regarding a sophisticated cybersecurity threat that has been increasingly targeting individuals and organizations across the United States. …

shaikh Saqib March 25, 2025

News

From The Hacker News – ⚡ THN Weekly Recap: GitHub Supply Chain Attack, AI Malware, BYOVD Tactics, and More

A quiet tweak in a popular open-source tool opened the door to a supply chain breach—what started as a targeted attack quickly spiraled, exposing secrets across countless projects. That wasn’t the only stealth move. A new all-in-one malware is silently stealing passwords, crypto, and control—while hiding in plain sight. And over 300 Android apps joined the chaos, running ad

shaikh Saqib March 24, 2025

News

From The Hacker News – Medusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen Certificates

The threat actors behind the Medusa ransomware-as-a-service (RaaS) operation have been observed using a malicious driver dubbed ABYSSWORKER as part of a bring your own vulnerable driver (BYOVD) attack designed to disable anti-malware tools. Elastic Security Labs said it observed a Medusa ransomware attack that delivered the encryptor by means of a loader packed using a packer-as-a-service (PaaS

shaikh Saqib March 21, 2025

News

From Security Week – Browser Security Under Siege: The Alarming Rise of AI-Powered Phishing

[[{"value":"Analysis reveals a 140% increase in browser phishing, including a 130% increase in zero-hour phishing attacks. The post Browser Security Under Siege: The Alarming Rise of AI-Powered Phishing appeared first…

shaikh Saqib March 20, 2025

News

From The Hacker News – YouTube Game Cheats Spread Arcane Stealer Malware to Russian-Speaking Users

YouTube videos promoting game cheats are being used to deliver a previously undocumented stealer malware called Arcane likely targeting Russian-speaking users. "What's intriguing about this malware is how much it collects," Kaspersky said in an analysis. "It grabs account information from VPN and gaming clients, and all kinds of network utilities like ngrok, Playit, Cyberduck, FileZilla, and

shaikh Saqib March 20, 2025

News

From Cyber Security News – Beware of Free File Word To PDF Converter That Delivers Malware

The FBI has issued an urgent warning about the rising threat of malicious file conversion tools that are being used to spread malware across the United States. Cybercriminals are targeting…

shaikh Saqib March 17, 2025

News

From Security Week – Microsoft 365 Targeted in New Phishing, Account Takeover Attacks

[[{"value":"Threat actors are abusing Microsoft 365 infrastructure in a BEC campaign, and target its users in two brand impersonation campaigns. The post Microsoft 365 Targeted in New Phishing, Account Takeover…

shaikh Saqib March 17, 2025

Vulnerabilities

From Cybersecurity Help – Cyber Security Week in Review: March 14, 2025

In brief: Microsoft, Apple fix zero-days, LockBit ransomware dev extradited to the US, and more. Read More

shaikh Saqib March 14, 2025