Phishing

Organizations in the oil and gas industry have been targeted with a phishing campaign that involved the deployment of a new Rhadamanthys information-stealing malware variant, The Hacker News reports.

StateScoop reports that New York City has limited access to its payroll system for more than a week now following the discovery of an SMS phishing, or smishing, campaign, which sought to facilitate personal data theft.

Tactics include “tricking” the AI into believing it is in “development mode” or roleplaying.

Nearly 250 Indian nationals who were forced into performing cyber fraud schemes in Cambodia have already been repatriated by the Indian government, according to The Hacker News.

Industrial, manufacturing, financial, trading, travel, and government organizations in the U.S., Mexico, Colombia, Brazil, Argentina, Dominican Republic, Spain, and Portugal have been targeted with new attacks by the TA588 cybercrime operation distributing the Venom RAT malware, The Hacker News reports.

BleepingComputer reports that more advanced features and increased stealth have been added to the updated Vultur Android banking trojan, which is being distributed via hybrid attacks.

Netcraft researchers say the Chinese-language PhaaS platform targeted postal organization in more than 100 countries, including USPS.