News New FileFix attack runs JScript while bypassing Windows MoTW alerts
A new FileFix attack allows executing malicious scripts while bypassing the Mark of the Web (MoTW) protection in Windows...
Social Engineering
News 
News New wave of ‘fake interviews’ use 35 npm packages to spread malware
A new wave of North Korea's 'Contagious Interview' campaign is targeting job seekers with malicious npm packages that in...
News Google: Hackers target Salesforce accounts in data extortion attacks
Google has observed hackers claiming to be the ShinyHunters extortion group conducting social engineering attacks agains...
News Scattered Spider: Three things the news doesn’t tell you
With the recent attacks on UK retailers Marks & Spencer and Co-op, so-called Scattered Spider has been all over the medi...
News Android malware Crocodilus adds fake contacts to spoof trusted callers
The latest version of the 'Crocodilus' Android malware has introduced a new mechanism that adds a fake contact to an inf...
News FBI warns of Luna Moth extortion attacks targeting law firms
The FBI warned that an extortion gang known as the Silent Ransom Group has been targeting U.S. law firms over the last t...
News TikTok videos now push infostealer malware in ClickFix attacks
Cybercriminals are using TikTok videos to trick users into infecting themselves with Vidar and StealC information-steali...
News 3AM ransomware uses spoofed IT calls, email bombing to breach networks
A 3AM ransomware affiliate is conducting highly targeted attacks using email bombing and spoofed IT support calls to soc...
News コインベースのデータ流出、顧客情報と政府IDが流出
億人以上の顧客を持つ暗号通貨取引所Coinbaseは、不正なサポートエージェントと協力するサイバー犯罪者が顧客データを盗み、盗まれた情報を公開しないよう2000万ドルの身代金を要求したことを明らかにした。 同社は、身代金は支払わないが、この...
News ハッカーがLinuxを標的としたClickFix攻撃をテスト中
クリックフィックス(ClickFix)攻撃を用いた新たなキャンペーンが、WindowsとLinuxの両システムを標的とし、どちらのオペレーティング・システム上でも感染を可能にするような指示を用いて行われていることが判明した。 ClickFi...