269 article(s)
Two Chrome extensions posing as VPN speed test tools were exposed for stealing sensitive data from over 170 major sites. Learn how the Phantom Shuttle scam worked, who was targeted, and what security experts recommend.
A criminal campaign leveraging fake VPN Chrome extensions has silently stolen credentials and sensitive data from over 2,000 users since 2017, exposing the risks of browser add-ons masquerading as security tools.
MacSync Stealer’s latest campaign exposes how digitally signed and notarized apps can be weaponized to bypass Apple’s security checks. Discover how this stealthy malware operates and what it means for the future of macOS security.
Federal agents have seized a domain used by cybercriminals to steal millions from bank accounts through a sophisticated phishing and credential theft operation, marking a significant win in the fight against online financial fraud.
Fake VPN Chrome extensions exploited browser permissions to intercept user traffic and steal credentials, exposing thousands to supply chain risks. Discover how Phantom Shuttle operated undetected for years.
A new MacSync Stealer variant is exploiting Apple’s own trusted app ecosystem, using signed and notarized applications to distribute infostealing malware and evade macOS defenses. Here’s how the attack works—and why code signing is no longer enough.
An investigative look at how our minds trick us into creating weak passwords, the role of the IKEA Effect, and why even complex policies can fail.
A sophisticated MacSync dropper now leverages Apple’s own code-signing and notarization to bypass Gatekeeper, stealing credentials and sensitive data from unsuspecting macOS users.
Uzbekistan is facing a surge of Android SMS stealer malware attacks, with cybercriminals leveraging Telegram and sophisticated dropper techniques to steal money and personal data. Learn how these campaigns operate and what you can do to stay safe.
Wonderland, a sophisticated Android malware, is targeting Uzbekistan with real-time SMS hijacking and advanced evasion tactics, signaling a major shift in mobile cybercrime operations.