In March 2025, cybersecurity researchers at Genians Security Center (GSC) flagged a sophisticated spear phishing campaign orchestrated by the North Korea-linked threat actor APT37.
This operation, dubbed “Operation ToyBox Story,” marks a significant evolution in the group’s tactics: using fake academic conference invites and...
A sophisticated malware campaign, tracked as “Phantom Enigma,” has been discovered exploiting browser extension mechanisms in Google Chrome, Microsoft Edge, and Brave.
The objective is clear: stealthily exfiltrate sensitive authentication data, particularly targeting bank customers in Brazil.
Threat intelligence teams from Positive Technologies Security...
A sophisticated new Android banking Trojan, dubbed Crocodilus, has emerged on the global threat landscape, rapidly evolving its features and evasion techniques as it sweeps across Europe, South America, and beyond.
Initially spotted by Mobile Threat Intelligence (MTI) researchers in March 2025, Crocodilus has already...
Security researchers have recently uncovered a devious malware campaign that employs fake CAPTCHA and “prove you’re human” screens on spoofed websites most notably, imitations of the Gitcodes and DocuSign platforms.
The carefully orchestrated campaign tricks users into executing malicious PowerShell scripts, ultimately installing NetSupport...
Security researchers have uncovered a new campaign leveraging a variant of the Atomic macOS Stealer (AMOS), deploying a sophisticated blend of phishing and technical exploitation to target both consumer and corporate macOS users.
The campaign, first detected in early June 2025, uses typosquatted domains mimicking U.S....
The Android malware ecosystem has seen a surge of innovation in 2024, with threat actors actively circumventing security measures introduced in recent Android versions.
One of the most concerning developments is the ability of advanced malware loaders to bypass the heightened accessibility restrictions implemented...