Residents across the United States are being inundated with text messages purporting to come from toll road operators like E-ZPass, warning that recipients face fines if a delinquent toll fee remains unpaid. Researchers say the surge in SMS spam coincides with new features added to a popular commercial phishing kit sold in China that makes … Read more
Jan 04, 2025Ravie LakshmananMalware / VPN Security Cybersecurity researchers have flagged a new malware called PLAYFULGHOST that comes with a wide range of information-gathering features like keylogging, screen capture, audio capture, remote shell, and file transfer/execution. The backdoor, according to Google’s Managed Defense team, shares functional overlaps with a known remote administration tool referred to … Read more
Corrupted Microsoft Office documents and archive files have been used to evade detection in a recent phishing campaign, according to ANY.RUN. The files are intentionally corrupted to prevent scanning by email filters and antivirus software, and to prevent them from launching properly in sandbox environments, according to ANY.RUN. However, the files can still be recovered … Read more
Phishing attacks are evolving faster than ever, using sophisticated techniques like stealth redirects and zero-day phishing links to evade traditional defences. Recent trends show a concerning rise in phishing attempts targeting social media platforms, such as Instagram and Facebook, alongside document-sharing services like OneDrive. These attacks are not only more frequent but also increasingly effective … Read more
Threat actors are using AI-powered phishing lures, sophisticated website cloning tools, and remote code execution (RCE) exploits to gain unauthorized access to shopping platforms this holiday season. In a Nov. 26 blog post, FortiGuard Labs said that AI-driven methods let attackers craft convincing emails and replicas of legitimate websites to steal data or trick users … Read more
