Malicious job offers from fashion and beauty brands Bershka, John Hardy, Fragrance Du Bois, and Dear Klairs have been used to deploy the PureHVNC remote access trojan as part of a multi-stage phishing campaign last year, GBHackers News reports.
Investment, banking, energy, and insurance organizations around the world are having their chief financial officers and other finance executives subjected to a spear-phishing campaign distributing the NetBird malware, reports GBHackers News.
Hundreds of organizations around the world, particularly those in the financial services, technology, and healthcare sectors, are believed to have been targeted as part of a sweeping phishing campaign that exploited the infrastructure of the widely used project management platform Nifty, Cyber Security News reports.
Credential phishing facilitated by Google Apps Script exploitation BleepingComputer reports that Google's cloud scripting platform Google Apps Script has been exploited to host seemingly legitimate credential phishing pages.
Threat actors have been leveraging bogus installers for several artificial intelligence platforms to facilitate compromise with the CyberLock and Lucky_Gh0$t ransomware payloads, as well as the novel Numero malware, The Hacker News reports.
Philippines-based tech firm Funnull Technology has been sanctioned by the U.S. Treasury Department's Office of Foreign Assets Control over its involvement in romance baiting schemes resulting in the loss of $200 million worth of cryptocurrency among U.S. victims, reports The Hacker News.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.