-
Bluekit Phishing Kit is a new PhaaS tool that targets major platforms, using AiTM techniques to steal session data and bypass MFA protections.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Forcepoint’s X-Labs reports an 11-step DHL phishing scam that uses fake OTP codes and EmailJS to harvest user credentials and device telemetry.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Security Risk in 2026: why unofficial download sources still put users at risk, and how to verify safe, official install paths before installing software.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Research from Infoblox reveals a massive Click2SMS fraud scheme using fake CAPTCHAs and back button hijacking to trick victims into sending costly international texts.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Fake CAPTCHA ClickFix attack tricks users into running malicious commands, using cmdkey and regsvr32 to maintain persistence and avoid detection on Windows
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Over 130,000 users are at risk from fake TikTok downloader extensions on Chrome and Microsoft Edge. Researchers discovered these malicious tools use device fingerprinting to spy on users and steal sensitive browser data.
·
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
New research from Zimperium reveals four active Android malware campaigns, RecruitRat, SaferRat, Astrinox, and Massiv, targeting over 800 banking apps globally.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Fake Claude AI installer mimicking Anthropic spreads PlugX malware on Windows, using DLL sideloading to gain persistent remote access to infected systems.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Apple approved a fake Ledger Live app on its App Store, allowing scammers to steal $9.5 million from more than 50 users. Did you install this app?
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Booking.com confirms a data breach exposing customer details to hackers. No payment data accessed, but users face risk of targeted phishing scams now!
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
