Phishing

CFO Dive reports that a growing number of cybercriminals are using artificial intelligence to pose as job applicants, exposing companies to serious financial risks through deepfake-driven scams, according to fraud detection firm Pindrop.

QUBIT AI, Recall This, Defender, Tycoon, Slopsquatting, Feng Mengleng, Aaran Leyland, and more, on the Security Weekly News.

The phishing-as-a-service (PaaS) kit targets Microsoft 365 and Gmail environments.

Stealthier Tycoon2FA phishing kit appears as PhaaS platforms fuel SVG exploitation Threat detection and endpoint security systems are being better evaded by a new iteration of the Tycoon2FA phishing-as-a-service kit, reports BleepingComputer.

Hackread reports that attacks involving sophisticated dynamic device code phishing have been deployed by Russian state-sponsored advanced persistent threat operation Storm-2372 to stealthily compromise organizations in the government, defense, healthcare, finance, and technology sectors in the U.S., Canada, Germany, Ukraine, Australia, and the UK.

A new PowerShell backdoor and persistence technique that hijacks TypeLib were discovered.

Android remote access trojan SpyNote has been deployed through fraudulent Google Play websites on newly registered domains as part of a new attack campaign, reports Infosecurity Magazine.

Moroccan cybercrime operation Atlas Lion which sets its sights on major retailers, restaurants, and other gift card-giving organizations has been integrating their virtual machines into targeted entities' cloud domains via breached credentials to facilitate covert intrusions, according to The Record, a news site by cybersecurity firm Recorded Future.