Cybersecurity researchers at Barracuda uncovered GhostFrame, a slick phishing-as-a-service (PhaaS) kit, back in September 2025.
By early December, it powered over a million attacks worldwide. This kit hides its malice in plain sight by loading phishing content via an invisible iframe on a basic...
Cybercriminals are exploiting Microsoft Teams notifications to push callback phishing scams, tricking users into calling fake support lines.
These attacks use legitimate-looking invites from the official Teams sender address, no-reply@teams.mail.microsoft, which often slips past email filters and user caution.
Recent alerts from Trustwave's SpiderLabs...
Mozilla has issued an urgent advisory to add-on developers, alerting them to a sophisticated phishing campaign aimed at compromising accounts on the Mozilla Add-ons (AMO) platform.
The security teams detected the malicious effort when several developers reported receiving deceptive emails that mimic official communication...
Cybersecurity researchers have uncovered a sophisticated banking trojan called DoubleTrouble that has rapidly evolved its attack methods, shifting from traditional phishing websites impersonating European banks to leveraging Discord channels for malware distribution.
The malware represents a significant threat to mobile banking security, employing advanced...
Cybersecurity researchers have identified a new campaign distributing the sophisticated VIP Keylogger malware through an evolved attack methodology that leverages AutoIt-based injection techniques.
Unlike previous iterations that relied on steganography, this campaign employs process hollowing and memory-based execution to evade traditional antivirus solutions while...
Cybercriminals are intensifying their efforts to exploit Formula 1 enthusiasts and racing teams ahead of the 2025 Belgian Grand Prix at Spa-Francorchamps on July 27.
Security experts warn that the high-profile event has become a prime target for sophisticated phishing campaigns and cyberattacks, with...