Social Engineering

IT Help Desk

UNC6692 Poses as IT Help Desk via Microsoft Teams to Deploy SNOW Malware

Security researchers have uncovered a previously unknown threat activity group designated as UNC6692, which has been conducting targeted attacks using social engineering tactics deployed through Microsoft Teams messaging platform. The campaign focuses on distributing a specialized malware toolkit designed to establish persistent access to corporate networks. According to findings released by Google-owned Mandiant, the threat […]

UNC6692 Poses as IT Help Desk via Microsoft Teams to Deploy SNOW Malware Read More »

AitM Phishing Attack Targets TikTok Business Accounts by Bypassing Cloudflare Turnstile Security

Cybersecurity researchers have uncovered a sophisticated phishing campaign designed to compromise TikTok for Business accounts using advanced adversary-in-the-middle (AitM) techniques. The operation, identified by Push Security, highlights how attackers are evolving their tactics to bypass modern security defenses. Business Accounts Become High-Value Targets Accounts linked to social media platforms are increasingly attractive to cybercriminals. Once compromised,

AitM Phishing Attack Targets TikTok Business Accounts by Bypassing Cloudflare Turnstile Security Read More »

Tax Themed Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR

A large-scale malvertising campaign has been identified targeting users searching for tax-related documents, leading to the deployment of remote access malware and advanced security evasion tools. The campaign, active since early 2026, was analyzed by Huntress, revealing how attackers are abusing online advertisements to distribute malicious software disguised as legitimate tax resources. Malicious Ads Target Tax-Related

Tax Themed Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR Read More »

Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner

Cybersecurity researchers have uncovered an advanced phishing campaign targeting corporate environments, particularly French-speaking organizations, by distributing fake resumes that secretly deploy malware. The operation, tracked as FAUX#ELEVATE by Securonix, combines credential theft, data exfiltration, and cryptocurrency mining into a single highly efficient attack chain. Malicious Resumes Disguised as Job Applications The campaign begins with phishing emails containing what

Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner Read More »

FBI Warns of Russian Hackers Targeting Signal and WhatsApp in Large Scale Phishing Attacks

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a warning about ongoing phishing attacks carried out by Russian-aligned threat actors. These campaigns are targeting widely used messaging platforms such as WhatsApp and Signal to compromise high-value individuals. Who Is Being Targeted The attacks primarily focus on individuals

FBI Warns of Russian Hackers Targeting Signal and WhatsApp in Large Scale Phishing Attacks Read More »

ClickFix Campaigns Distribute MacSync macOS Infostealer Through Fake AI Tool Installers

Cybersecurity researchers have identified multiple ClickFix malware campaigns distributing a macOS information stealing malware known as MacSync. The campaigns rely heavily on social engineering techniques that trick users into manually executing malicious commands in the macOS Terminal. Security experts from Sophos explained that the attacks differ from traditional exploit driven campaigns. Instead of exploiting software

ClickFix Campaigns Distribute MacSync macOS Infostealer Through Fake AI Tool Installers Read More »

instagram logo

Meta to End Instagram End-to-End Encrypted Chat Support Starting May 2026

Meta has announced it will discontinue support for end-to-end encryption (E2EE) for Instagram direct messages after May 8, 2026. Users affected by this change will be guided on how to download media and messages they wish to keep. Updating to the latest Instagram version may be required for this process. Reason Behind the Decision Meta explained that few users opted into

Meta to End Instagram End-to-End Encrypted Chat Support Starting May 2026 Read More »

Storm-2561 Distributes Trojanized VPN Clients Through SEO Poisoning to Steal Credentials

Security researchers have uncovered a new cyber campaign in which threat actors distribute trojanized VPN clients using search engine manipulation techniques to steal login credentials from unsuspecting users. According to findings published by Microsoft, the operation uses search engine optimization (SEO) poisoning to redirect users searching for legitimate enterprise software to malicious websites that deliver

Storm-2561 Distributes Trojanized VPN Clients Through SEO Poisoning to Steal Credentials Read More »

Meta Shuts Down 150K Accounts Tied to Southeast Asia Scam Centers in Global Crackdown

Meta has disabled more than 150,000 accounts connected to scam centers in Southeast Asia, part of a coordinated global effort involving authorities from Thailand, the U.S., the U.K., Canada, Korea, Japan, Singapore, the Philippines, Australia, New Zealand, and Indonesia. The crackdown also led to 21 arrests by the Royal Thai Police. This action follows a

Meta Shuts Down 150K Accounts Tied to Southeast Asia Scam Centers in Global Crackdown Read More »

Starkiller Phishing Kit Leverages AiTM Reverse Proxy to Evade Multi Factor Authentication

Cybersecurity researchers have uncovered a powerful new phishing toolkit named Starkiller that leverages adversary in the middle technology to bypass multi factor authentication protections. The phishing suite is being promoted by a cybercrime group calling itself Jinkusu. It is marketed as a phishing as a service platform that provides subscribers with a centralized dashboard to

Starkiller Phishing Kit Leverages AiTM Reverse Proxy to Evade Multi Factor Authentication Read More »