Apps impersonating the widely used hardware-based cryptocurrency wallet Ledger have been harnessed to compromise macOS users' wallet seed phrases, BleepingComputer reports.
Infostealer deployed via TikTok videos Infosecurity Magazine reports that potentially artificial intelligence-created TikTok videos have been leveraged by threat actors to deploy the Vidar and StealC information-stealing payloads as part of a new malware campaign.
Organizations across Russia have been subjected to four times more phishing intrusions with the PureRAT information-stealing malware during the first four months of 2025, compared with the same period last year, reports The Hacker News.
More than 100 Chrome browser extensions masquerading as legitimate tools, including YouTube, Fortinet VPN, Calendly, and DeepSeek AI, have been utilized to enable browser data compromise and remote script execution as part of a new attack campaign, BleepingComputer reports.
RAT malware spread via bogus Kling AI ads Widely used artificial intelligence-powered media platform Kling AI has been spoofed on Facebook ads to facilitate remote access trojan distribution, according to The Hacker News.
Information-stealing malware Lumma, also known as LummaC2, had its infrastructure disrupted following an international law enforcement operation led by the U.S., EU, and Microsoft, reports The Record, a news site by cybersecurity firm Recorded Future.
Intrusions with spear-phishing emails and geofenced payloads have been deployed by suspected Indian state-sponsored advanced persistent threat operation Sidewinder to compromise various government entities in Bangladesh, Pakistan, and Sri Lanka with the StealerBot malware, reports The Hacker News.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.