A nefarious endeavor was orchestrated to ensnare the chief executive of a Swedish cybersecurity conglomerate with a missive so flawlessly forged that it could deceive even the most seasoned savant. The kinetic strike was...
A sophisticated new phishing instrument dubbed Starkiller has emerged within clandestine marketplaces, fundamentally altering the mechanics of credential theft. Rather than meticulously crafting fraudulent login portals, adversaries are leveraging authentic websites, broadcasting them in...
To infiltrate a corporate network, adversaries are increasingly eschewing the search for server vulnerabilities or the deployment of intricate exploits. It has proven far more lucrative to adopt a simpler, more clandestine approach: usurping...
The cybercriminal group GrayBravo, formerly known as TAG-150, continues to evolve at a rapid pace, demonstrating a high degree of technical sophistication, operational flexibility, and an ability to scale its infrastructure. A new investigation...
GhostFrame is a newly emerged phishing tool that, in just three months, has already powered more than one million attacks. It relies on a deceptively simple HTML file and a concealed iframe to swap...
A multi-stage phishing campaign known as Tykit has been targeting Microsoft 365 corporate users, actively employed to steal login credentials. Researchers at ANY.RUN have observed a surge in its activity since May 2025, reaching...
