Threat actors are utilizing swap files on compromised websites to hide credit card skimmers, with recent cases involving Magento e-commerce sites and WordPress sites being exploited.
Daggerfly, also known as Evasive Panda or Bronze Highland, targets organizations and individuals globally with updated malware toolkit, including new backdoors and espionage capabilities.
The SocGholish malware, also known as FakeUpdates, has been active since July 4th, 2024, spreading through fake browser updates to deliver the AsyncRAT trojan and install the BOINC platform on infected systems for cyberattacks.
Threat actors are engaging in phishing campaigns and distributing malicious software in the wake of a global IT outage caused by a faulty software update from CrowdStrike, impacting millions of Microsoft Windows PCs worldwide.
Financially motivated threat actors FLUXROOT and PINEAPPLE exploit Google Cloud serverless projects for credential phishing campaigns and malware distribution targeting online payment platforms in Latin America.
Play ransomware group expands operations to target VMware ESXi servers with new Linux variant, impacting approximately 300 organizations across industries like manufacturing, IT, retail, and financial services.
