News

CSO Online2d
How phishers are weaponizing SVG images in zero-click, evasive campaigns
Seemingly harmless SVGs are packed with malicious JavaScript for a phishing redirect to actor-controlled URLs.
Infosecurity Magazine2d
Threat Actors Exploit SVG Files in Stealthy JavaScript Redirects
Once opened in a browser, the code decrypts a secondary payload using a static XOR key and then redirects the user to an attacker-controlled site via the window.location.href function. These URLs ...
WeLiveSecurity3d
Unmasking AsyncRAT: Navigating the labyrinth of forks
AsyncRAT has cemented its place as a cornerstone of modern malware and as a pervasive threat that has evolved into a ...
CSO Online14h
Ransomware actors target patched SonicWall SMA devices with rootkit
A hacker group connected to data theft, extortion, and ransomware is targeting SonicWall SMA 100 series appliances with a ...
Criminals are using a dangerous fake free VPN to spread malware via GitHub - here's how to stay safe
Security experts have warned of an emerging new cyber threat involving fake VPN software hosted on GitHub. A report from Cyfirma outlines how malware disguises itself as a “Free VPN for PC” and lures ...