sctocs

Interpol in cyber criminal

INTERPOL Dismantles 45,000 Malicious IPs and Arrests 94 Suspects in Global Cybercrime Operation

INTERPOL has announced the dismantling of 45,000 malicious IP addresses and servers used in phishing, malware, and ransomware operations. The international law enforcement effort aimed to disrupt criminal networks, neutralize emerging threats, and protect victims from online scams. The operation involved 72 countries and territories, resulting in the arrest of 94 individuals, with another 110 under investigation. Authorities seized 212 […]

INTERPOL Dismantles 45,000 Malicious IPs and Arrests 94 Suspects in Global Cybercrime Operation Read More »

Storm-2561 Distributes Trojanized VPN Clients Through SEO Poisoning to Steal Credentials

Security researchers have uncovered a new cyber campaign in which threat actors distribute trojanized VPN clients using search engine manipulation techniques to steal login credentials from unsuspecting users. According to findings published by Microsoft, the operation uses search engine optimization (SEO) poisoning to redirect users searching for legitimate enterprise software to malicious websites that deliver

Storm-2561 Distributes Trojanized VPN Clients Through SEO Poisoning to Steal Credentials Read More »

Linux-AppArmor

Nine CrackArmor Vulnerabilities in Linux AppArmor Allow Root Privilege Escalation and Container Isolation Bypass

Cybersecurity researchers have uncovered a group of critical security weaknesses in the Linux kernel’s AppArmor Linux security module that could allow attackers with limited privileges to bypass system protections, gain root access, and weaken container isolation mechanisms. The collection of nine vulnerabilities has been collectively named CrackArmor vulnerabilities by the Qualys Threat Research Unit (TRU).

Nine CrackArmor Vulnerabilities in Linux AppArmor Allow Root Privilege Escalation and Container Isolation Bypass Read More »

Authorities Take Down SocksEscort Proxy Botnet Using 369,000 IPs Across 163 Countries

A coordinated international law enforcement operation has dismantled a large scale criminal proxy network known as SocksEscort botnet, which hijacked thousands of residential routers around the world and used them for cybercrime activities. According to the U.S. Department of Justice (DoJ), the proxy service infected internet routers used by homes and small businesses with malicious software.

Authorities Take Down SocksEscort Proxy Botnet Using 369,000 IPs Across 163 Countries Read More »

Rust Based VENON Malware Targets 33 Brazilian Banks with Credential Stealing Overlays

Security updates have been released by Veeam to address several serious vulnerabilities in its Backup & Replication platform. If successfully exploited, these security flaws could allow attackers to execute malicious code remotely and compromise backup infrastructure. The vulnerabilities impact multiple builds of Veeam Backup & Replication, one of the most widely used enterprise backup and

Rust Based VENON Malware Targets 33 Brazilian Banks with Credential Stealing Overlays Read More »

Rust Based VENON Malware Targets 33 Brazilian Banks with Credential Stealing Overlays

Cybersecurity researchers have uncovered a newly developed banking malware named VENON, which specifically targets users in Brazil. The malware is written in Rust, marking a notable shift from the traditional Delphi-based malware families commonly associated with the Latin American cybercrime landscape. The malicious program, designed to infect Windows systems, was discovered recently and analyzed by the Brazilian cybersecurity firm ZenoX.

Rust Based VENON Malware Targets 33 Brazilian Banks with Credential Stealing Overlays Read More »

Ransomware Campaigns

Hive0163 Deploys AI Assisted Slopoly Malware for Persistent Access in Ransomware Campaigns

Cybersecurity experts have revealed a new AI-assisted malware strain named Slopoly, reportedly used by the financially motivated threat actor Hive0163 to maintain long-term access in ransomware attacks. IBM X-Force researcher Golo Mühr commented, “Although still relatively unsophisticated, AI-generated malware like Slopoly demonstrates how easily attackers can leverage artificial intelligence to accelerate malware development.” Overview of Hive0163 Operations Hive0163

Hive0163 Deploys AI Assisted Slopoly Malware for Persistent Access in Ransomware Campaigns Read More »

Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto Wallets

Cybersecurity researchers have uncovered six new Android malware families designed to steal sensitive data from infected devices and carry out financial fraud. These threats primarily target banking applications, cryptocurrency wallets, and digital payment platforms. The discovered malware includes several banking trojans and remote access tools capable of monitoring user activity, hijacking financial transactions, and gaining full control over

Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto Wallets Read More »

CISA Warns of Actively Exploited n8n RCE Vulnerability as 24,700 Instances Remain Exposed

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting the n8n workflow automation platform to its Known Exploited Vulnerabilities (KEV) catalog, confirming that the flaw is currently being exploited in real world attacks. The vulnerability, tracked as CVE-2025-68613 with a CVSS score of 9.9, allows attackers to execute remote code

CISA Warns of Actively Exploited n8n RCE Vulnerability as 24,700 Instances Remain Exposed Read More »

Researchers Bypass Perplexity Comet AI Browser Safeguards to Launch Phishing Scam in Minutes

Cybersecurity researchers have demonstrated how an artificial intelligence powered web browser can be manipulated into executing a phishing scam in just a few minutes. The attack targeted the Comet AI browser developed by Perplexity, highlighting emerging risks in agentic AI browsing technologies. Agentic browsers use artificial intelligence to automatically interact with websites, complete tasks, and make

Researchers Bypass Perplexity Comet AI Browser Safeguards to Launch Phishing Scam in Minutes Read More »