Separate but similar campaigns described by Microsoft and Trend Micro use malicious zip files to spread malware via social ...
PureLogs Stealer uses fake PDF JavaScript files and Google's Blogger pages in the VEIL#DROP campaign, enabling fileless ...
ConsentFix and ClickFix attacks steal Microsoft 365 tokens in seconds using fake prompts and OAuth flows. Learn how these MFA ...
A security analyst at a large enterprise recently found sensitive HR documents being copied into a Microsoft Teams channel ...
A wave of phishing emails sent to Booking.com partner accommodations in Japan in May led to blockchain-hosted malware ...
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
Armored Likho, a new APT group using AI-generated malware and the BusySnake Stealer to target government agencies and power ...
Criminals are exploiting traffic distribution systems to silently redirect users to fraudulent sites, and the FBI says the ...
Gamaredon hacking group escalated its decade-long espionage campaign against Ukraine in 2025, exploiting a weaponized WinRAR ...
Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.
Microsoft Threat Intelligence is observing a multi-stage attack wave targeting the hospitality industry in Asia and Europe.