Cybersecurity researchers have identified a sophisticated new scam campaign where fraudsters exploit Google Forms' legitimate infrastructure to target cryptocurrency users with deceptive offers of free digital assets.
This emerging threat leverages the trusted reputation of Google's services to bypass email security filters and reach...
Cyber-security analysts are warning of a sophisticated credential-harvesting campaign that combines a deceptive “I’m not arobot” CAPTCHA prompt with a Browser-in-the-Browser (BitB) overlay to mimic Facebook’s login window.
The multi-stage lure is designed to harvest account credentials and session cookies from unsuspecting users.
How the...
Cybersecurity researchers at CYFIRMA have uncovered a sophisticated Android banking malware campaign targeting Indian users through fake banking applications designed to steal credentials, intercept SMS messages, and conduct unauthorized financial transactions.
The malicious software employs advanced techniques, including silent installation mechanisms and Firebase cloud...
Acronis Threat Research Unit (TRU) has uncovered an alarming cybercrime campaign exploiting the popularity of Discord and YouTube to distribute powerful infostealing malware disguised as upcoming indie games.
The operation involves a family of advanced malware, including Leet Stealer, its modified variant RMC Stealer,...
Cybersecurity researchers have uncovered an active wave of infections targeting Windows systems via a novel malware loader known as CastleLoader.
First detected in early 2025, CastleLoader has rapidly evolved into a significant distribution platform for various information-stealing and remote access Trojans (RATs).
With over 1,600...
Microsoft confirmed on July 19, 2025, that cybercriminals and nation-state actors are actively exploiting a critical set of zero-day vulnerabilities dubbed "ToolShell" affecting on-premises SharePoint servers worldwide.
The attack campaign, which began on July 17, has prompted emergency security updates and represents one of...