Threat Actors Leveraging Toll Payment Services in Massive Hacking Attack
A sophisticated cybercriminal operation has emerged targeting toll payment services across multiple regions, with evidence suggesting this campaign will continue expanding globally.
The attack, characterized by highly convincing SMS phishing (smishing) messages, has already reached...
%20Stolen%20884,000%20Credit%20Card%20Details%20on%2013%20Million%20Clicks%20from%20Users%20Worldwide.webp?w=324&resize=324,235&ssl=1 "Darcula (PhaaS) Stolen 884,000 Credit Card Details on 13 Million Clicks from Users Worldwide")
Darcula (PhaaS) Stolen 884,000 Credit Card Details on 13 Million Clicks from Users Worldwide
Security researchers have uncovered one of the largest credit card theft operations in recent history, with a sophisticated Phishing-as-a-Service (PhaaS) platform called "Darcula" responsible for stealing approximately 884,000 credit card details through a massive...
Sophisticated Attack Via Booking Websites Installs LummaStealer Malware
Cybercriminals have launched a new sophisticated attack campaign targeting travelers through fake booking websites.
The campaign, discovered in early 2025, tricks users into installing LummaStealer malware through deceptive CAPTCHA verification processes, putting personal and financial...
Threat Actors Using Multimedia Systems Via Stealthy Vishing Attack
Cybercriminals have developed sophisticated vishing techniques that leverage multimedia file formats to bypass security systems and target unsuspecting victims.
These new attack vectors, observed in early 2025, represent an evolution in social engineering tactics where...
FunkSec Ransomware Dominating Ransomware Attacks, Compromised 85 Victims in December
A new ransomware group called FunkSec has emerged as a dominant force in the cybercrime landscape, claiming to have compromised over 85 victims in December 2024 alone.
This unprecedented surge in activity has surpassed all...
Tria Stealer Trojan Exploits Android Phones To Exfiltrate SMS Messages
A newly discovered Android malware campaign, dubbed Tria Stealer, has been targeting users in Malaysia and Brunei since mid-2024.
Leveraging fake wedding invitations as a lure, this Trojan steals sensitive data, including SMS messages, call...
Threat Actors Using $10 Infostealer Malware To Breach Critical US Security
A new class of cyber threats leveraging $10 infostealer malware kits has compromised critical U.S. military, defense contractor, and federal agency systems, exposing vulnerabilities in national security infrastructure.
According to Hudson Rock's cybercrime intelligence data,...
Hackers Weaponize Blogpost Links To Redirect Users To Malicious Pages
A sophisticated campaign has been uncovered recently by cybersecurity researchers where hackers are exploiting Blogspot links to redirect unsuspecting users to malicious websites.
This technique, part of the broader "ApateWeb" campaign, demonstrates the evolving tactics...
Researchers Uncover the Bond Between the Infamous Remcos RAT and GuLoader
There have been two instances of software distributors that have disguised themselves as having legitimate purposes but were actually operating with malicious intent.
Threat actors adopting the use of two software, GuLoader (also known as...
Hackers Weaponize MSI Packages & PNG Files To Deliver Multi-Stage Malware
A sophisticated cyberattack campaign targeting Chinese-speaking organizations in Hong Kong, Taiwan, and mainland China has been uncovered recently by Intezer Labs.
The attackers are employing a multi-stage loader, dubbed PNGPlug, to deliver the notorious ValleyRAT...
Recent Posts
Windows Remote Desktop Gateway UAF Vulnerability Allows Remote Code Execution
A critical vulnerability in Microsoft's Remote Desktop Gateway (RD Gateway) that could allow attackers to execute malicious code on affected systems remotely.
The vulnerability, tracked...