Reddit, WeTransfer pages spoofed in Lumma Stealer campaign – Go Health Pro

Reddit, WeTransfer pages spoofed in Lumma Stealer campaign – Go Health Pro

Nearly 1,000 fake Reddit and WeTransfer pages are being used to spread Lumma Stealer malware, a Sekoia.io researcher reported this week. The Sekoia lead cybercrime analyst, who goes by crep1x, posted screenshots of the spoofed Reddit and WeTransfer pages on X Monday, and also shared a full list of the phishing domains. The web pages, … Read more

North Korean Hackers Deploy OtterCookie Malware in Contagious Interview Campaign – Go Health Pro

North Korean Hackers Deploy OtterCookie Malware in Contagious Interview Campaign – Go Health Pro

Dec 27, 2024Ravie LakshmananCryptocurrency / Cyber Espionage North Korean threat actors behind the ongoing Contagious Interview campaign have been observed dropping a new JavaScript malware called OtterCookie. Contagious Interview (aka DeceptiveDevelopment) refers to a persistent attack campaign that employs social engineering lures, with the hacking crew often posing as recruiters to trick individuals looking for … Read more

Fake DocuSign docs used to secure corporate credentials in mishing campaign – Go Health Pro

Fake DocuSign docs used to secure corporate credentials in mishing campaign – Go Health Pro

A targeted mobile phishing (mishing) campaign was observed that leveraged a DocuSign impersonation scheme that aimed to harvest corporate credentials from company executives. ZimperiumLabs reported Dec. 18 that the DocuSign campaign was similar to a pattern of spear phishing attempts that enterprises have been tracking in which attackers specifically target the mobile devices of their … Read more

Horns&Hooves Campaign Delivers RATs via Fake Emails and JavaScript Payloads – Go Health Pro

Horns&Hooves Campaign Delivers RATs via Fake Emails and JavaScript Payloads – Go Health Pro

Dec 03, 2024Ravie LakshmananMalware / Phishing Attack A newly discovered malware campaign has been found to target private users, retailers, and service businesses mainly located in Russia to deliver NetSupport RAT and BurnsRAT. The campaign, dubbed Horns&Hooves by Kaspersky, has hit more than 1,000 victims since it began around March 2023. The end goal of … Read more

Corrupted Microsoft Office documents used in phishing campaign – Go Health Pro

Corrupted Microsoft Office documents used in phishing campaign – Go Health Pro

Corrupted Microsoft Office documents and archive files have been used to evade detection in a recent phishing campaign, according to ANY.RUN. The files are intentionally corrupted to prevent scanning by email filters and antivirus software, and to prevent them from launching properly in sandbox environments, according to ANY.RUN. However, the files can still be recovered … Read more

x