In a significant escalation of cyber threats targeting the cryptocurrency sector, security researchers have uncovered a sophisticated North Korean (DPRK)-linked campaign using Nim-compiled binaries and advanced multi-stage attack chains against Web3 and crypto-related businesses.
The operation, collectively dubbed “NimDoor,” demonstrates novel macOS malware techniques, including...
The security of millions of developers is at risk after new research revealed critical flaws in how the world’s most popular Integrated Development Environments (IDEs) verify third-party extensions.
The OX research team has uncovered an alarming vulnerability: attackers can craft extensions that retain the...
A new Android malware campaign is causing financial havoc in Uzbekistan, as cybercriminals leverage Telegram to spread the Qwizzserial malware, an advanced SMS stealer that targets local banking systems.
First detected by cybersecurity firm Group-IB in March 2024, Qwizzserial has rapidly infected an estimated...
A newly uncovered cyberattack campaign, identified by the FortiMail Incident Response team, is targeting organizations in Colombia with a sophisticated Remote Access Trojan (RAT) known as DCRat.
Masquerading as communications from a Colombian government agency, this campaign leverages advanced obfuscation techniques and a multi-stage payload...
In early 2025, cybersecurity experts sounded the alarm as the North Korean-linked Kimsuky group escalated its use of a deceptive technique known as “ClickFix.”
This tactic, first detailed by Proofpoint in April 2024 and further analyzed by Genians Security Center (GSC), leverages social engineering...
The CYFIRMA research team has uncovered a new wave of cyberattacks targeting macOS users, leveraging the recently rebranded Odyssey Stealer malware.
This sophisticated threat employs the “Clickfix” technique, an increasingly popular deception strategy involving typosquatted or visually mimicked domains, to deliver malicious AppleScripts (osascripts)...