Skip to content

D3f3ndo
Articles
Cybersecurity Glossary
Contact
Login

Credential Theft

Counterfeit Madgicx Plus and SocialMetrics extensions hijacking Meta business accounts

Data Theft Techniques | Malvertising Campaigns | Rogue Browser Extensions

Counterfeit Madgicx Plus and SocialMetrics extensions hijacking Meta business accounts

New phishing tool Salty2FA bypasses two-factor authentication

Phishing Techniques | Targeted Industries | Two-Factor Authentication Bypass

New phishing tool Salty2FA bypasses two-factor authentication

Hidden SVG files launch base64-encoded phishing sites

macOS Security Threats | Malware Campaigns | Phishing Attacks

Hidden SVG files launch base64-encoded phishing sites

Considering Browsers as a Vulnerability Target: Reevaluating Security for Scattered Spider

Browser Security Strategies | Credential Theft Prevention | Cybersecurity Threats

Considering Browsers as a Vulnerability Target: Reevaluating Security for Scattered Spider

Storm-0501 utilizes Entra ID to extract and erase Azure data during hybrid cloud attacks

Cloud Security Vulnerabilities | Cybersecurity Threats | Ransomware Tactics

Storm-0501 utilizes Entra ID to extract and erase Azure data during hybrid cloud attacks

New APT group ‘Curly COMrades’ targeting Georgia and Moldova

Credential Theft | Cyber Espionage | Malware Persistence

New APT group ‘Curly COMrades’ targeting Georgia and Moldova

RubyGems and PyPI have both experienced attacks involving harmful packages that are designed to steal credentials and cryptocurrency

Credential Theft | Malicious Software | Social Media Automation Tools

RubyGems and PyPI have both experienced attacks involving harmful packages that are designed to steal credentials and cryptocurrency

GreedyBear has swindled $1 million in cryptocurrency by employing over 150 harmful Firefox wallet extensions.

Cryptocurrency Theft | Cybersecurity Threats | Malicious Browser Extensions

GreedyBear has swindled $1 million in cryptocurrency by employing over 150 harmful Firefox wallet extensions.

Microsoft 365’s Direct Send feature has been exploited to circumvent email security measures.

Email Security Exploitation | Social Engineering Techniques | Spear Phishing

Microsoft 365’s Direct Send feature has been exploited to circumvent email security measures.

Akira and Lynx ransomware are targeting Managed Service Providers (MSPs) by exploiting stolen login credentials and existing vulnerabilities.

Attack Techniques | Ransomware Operations | Targeted Industries

Akira and Lynx ransomware are targeting Managed Service Providers (MSPs) by exploiting stolen login credentials and existing vulnerabilities.

Over 10,000 harmful TikTok Shop websites are targeting users to obtain login details and distribute malware.

Cybercrime | E-commerce Security | Phishing Attacks

Over 10,000 harmful TikTok Shop websites are targeting users to obtain login details and distribute malware.

APT36 Hackers Targeting Indian Government Organizations to Harvest Login Information

Credential Theft | Cybersecurity Threats | Phishing Campaign

APT36 Hackers Targeting Indian Government Organizations to Harvest Login Information

Kimsuky APT hackers are utilizing LNK files as a means to deploy reflective malware, successfully evading detection by Windows Defender.

Cyber Espionage | Malware Techniques | Social Engineering

Kimsuky APT hackers are utilizing LNK files as a means to deploy reflective malware, successfully evading detection by Windows Defender.

Lazarus Hackers Exploit 234 Packages on npm and PyPI to Compromise Developers

Cybersecurity

Lazarus Hackers Exploit 234 Packages on npm and PyPI to Compromise Developers

© 2025 InfosecToday.com - WordPress Theme by Kadence WP

D3f3ndo
Articles
Cybersecurity Glossary
Contact
Login

Search for: