Multiple sites hijacked for bogus support number injections Hackread reports that high-profile organizations, including Microsoft, Apple, Facebook, Bank of America, and PayPal, had their websites compromised to include fraudulent customer support numbers as part of a widespread search parameter injection scam.
Threat actors have been increasingly relying on social engineering tactics such as ClickFix scams to lure victims into infecting their systems with malware
Jamfs newly released Security 360 Report underscores the growing complexity of cybersecurity risks across mobile and Mac devices used in enterprise environments, with phishing, infostealers, and unpatched vulnerabilities emerging as top concerns, according to IT Brief Australia.
Organizations across Taiwan have been targeted by the Silver Fox advanced persistent threat operation in phishing attacks spreading Gh0st RAT variants Gh0stCringe and HoldingHands RAT as part of a campaign involving the Winos 4.0 malware framework that commenced in January, reports The Hacker News.
New BrowserVenom malware spread via DeepSeek spoofing Numerous computers across Mexico, Brazil, Cuba, India, Nepal, Egypt, and South Africa have been compromised with the novel BrowserVenom malware in a phishing campaign involving the impersonation of Chinese artificial intelligence platform DeepSeek-R1, reports The Register.
Threat actors previously associated with the Black Basta ransomware gang have continued leveraging Microsoft Teams phishing alongside Python script execution in new intrusions, indicating the ongoing regrouping of the ransomware operation following a steep decline stemming from its internal chat log leak earlier this year, The Hacker News reports.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
