Within a specimen of malicious software, initially misidentified as the infamous Vidar infostealer, an entirely disparate narrative has been unearthed. Lurking beneath this misattribution was a nascent instrument for data exfiltration, subsequently christened the...
The burgeoning ubiquity of Apple computational machines is inexorably shifting the equilibrium of power within the clandestine cybercriminal underworld. Whereas macOS was hitherto perceived as a mere niche dominion, contemporary malefactors now regard it...
An endeavor to dismantle a ubiquitous platform dedicated to account theft yielded but an ephemeral triumph. A mere span of days following a coordinated law enforcement intervention, the Tycoon2FA service resumed its operations with...
A diverse array of nascent Android malware lineages has emerged, aggressively pursuing user financial assets, banking applications, and cryptocurrency repositories. Cybersecurity researchers have chronicled the deployment of both traditional banking trojans and more versatile...
Following the dismantling of the Lumma Stealer infrastructure in 2025, the landscape of data-stealing malicious software began to shift precipitously. Emerging and established instruments swiftly encroached upon the resulting vacuum, while a fierce struggle...
In the autumn of 2025, a nascent infostealer christened Arkanix Stealer emerged within the dark web’s clandestine marketplaces. Promoted as a comprehensive commercial enterprise, it boasted a sophisticated administrative dashboard, dedicated technical support, and...
The adversarial collective APT-C-28, recognized alternatively as ScarCruft or Konni, has broadened its operational horizons by orchestrating surgical strikes against cryptocurrency enterprises and Web3 development teams. This nascent surge in activity was identified by...
A sophisticated malicious instrument christened Stanley exemplifies a paradigm shift in the evolution of browser extension exploits. We are no longer contending with haphazard website spoofs or rudimentary phishing portals; instead, we are witnessing...
The architects of malicious software have themselves fallen prey to a vulnerability overlooked within their own infrastructure. This irony centers on StealC, a pervasive information stealer operating under the “Malware-as-a-Service” (MaaS) paradigm, renowned for...
Check Point researchers have uncovered a new campaign known as the so-called YouTube Ghost Network—a web of hijacked YouTube accounts used to distribute malware disguised as game cheats and pirated software. At the heart...
Researchers at iVerify have identified a new Android remote access trojan dubbed Cellik, which blends the capabilities of full-fledged spyware with the ability to masquerade as legitimate applications from Google Play. The malware is...
Researchers at Koi Security have identified a new malicious campaign dubbed GhostPoster, targeting users of the Firefox browser. As part of the operation, attackers distributed extensions that appeared harmless and even amassed tens of...
