Fake CERT-UA Site Spreads Go-Based RAT in Phishing Campaign

Hackers have launched a targeted phishing campaign by cloning Ukraine’s official CERT-UA website and distributing malicious software disguised as a security tool, according to a new alert from the national cyber response team. Targets included governme…

·

cyber security, Cyber Security News, Phishing

¶¶¶¶¶

LinkedIn Phishing Scam Uses Fake Notifications to Hijack Accounts

A LinkedIn phishing scam uses fake notifications and lookalike domains to steal credentials, hijack accounts, and access sensitive professional data.

·

Cofense, Cyber Attack, Cyber Crime, cybersecurity, Fraud, LinkedIn, Phishing, Phishing Scam, SCAM, Security

¶¶¶¶¶

EvilTokens Launches New Phishing Service Targeting Microsoft Accounts

EvilTokens is a new Phishing-as-a-Service (PhaaS) platform that industrialises Microsoft account takeover by abusing the OAuth device code flow rather than traditional credential phishing. The service sells a turnkey Microsoft device code phishing kit …

·

cyber security, Cyber Security News, Microsoft, Phishing

¶¶¶¶¶

Silver Fox Cyberattack Targets Japanese Businesses with Tax-Themed Phishing Scams

A threat actor known as Silver Fox is targeting Japanese organizations with a new wave of spearphishing attacks timed to coincide with the country’s busy tax-filing and corporate restructuring season. The campaign focuses heavily on manufacturers and e…

·

Cyber Attack, cyber security, Cyber Security News, Phishing

¶¶¶¶¶

Phishing ZIP Files Used to Deploy PXA Stealer Targeting Financial Firms

A sharp rise in PXA Stealer campaigns targeting global financial institutions during the first quarter of 2026. The activity marks a notable shift in the infostealer landscape, with PXA Stealer filling the gap left by the takedowns of major malware fam…

·

cyber security, Cyber Security News, Phishing

¶¶¶¶¶

New Ghost Campaign Uses Fake npm Progress Bars to Phish Sudo Passwords

ReversingLabs researchers identify a new Ghost campaign using fake npm install logs and progress bars to phish for sudo passwords and steal crypto wallets from developers.

·

Cyber Attack, cybersecurity, Developers, Malware, npm, Phishing, Phishing Scam, SCAM, Security, Sudo

¶¶¶¶¶

Silver Fox Tax Audit Phishing Campaign Shifts from RATs to Python Stealers

Threat intelligence teams have tracked Silver Fox (also known as Void Arachne), a China-based intrusion set that sits at the intersection of financially motivated cybercrime and APT-style espionage. Originally associated with large-scale, profit-driven…

·

cyber security, Cyber Security News, Phishing

¶¶¶¶¶

Fake OpenClaw Token Giveaway Targets GitHub Devs with Wallet-Draining Scam

OX Security reveals a new phishing campaign targeting GitHub developers. Scammers use fake OpenClaw token giveaways to trick users into connecting and draining their crypto wallets

·

Crypto, cybersecurity, Developers, Fraud, GitHub, OpenClaw, Phishing, Phishing Scam, SCAM, Security

¶¶¶¶¶

Tycoon2FA Operators Resume Cloud Account Phishing Following Infrastructure

Tycoon2FA operators have resumed large-scale cloud account phishing just days after law enforcement and industry partners disrupted the platform’s core infrastructure, underscoring the resilience of phishing-as-a-service (PhaaS) ecosystems and the limi…

·

cyber security, Cyber Security News, Phishing

¶¶¶¶¶

New Fake Zoom Meeting Invite Scam Spreads Malware on Windows PCs

Cybersecurity researchers at Sublime Security have discovered a new scam that uses realistic, interactive JavaScript-based Zoom meeting invites to trick users into installing malware.

·

cybersecurity, Fraud, Malware, Phishing, SCAM, Security, Sublime Security, Windows, Zoom

¶¶¶¶¶

1010.cx

1010.cx

Category: Phishing