ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
ResolverRAT Attacking Healthcare and Pharmaceutical Via Sophisticated Phishing Attacks
<html><body><p>A new sophisticated remote access trojan (RAT) has emerged as a significant threat to healthcare and pharmaceutical organizations worldwide. Dubbed ResolverRAT, this previously undocumented malware deploys
Threat Actors Leverage Access to Valid Accounts via Phishing Attack
<html><body><p>In a significant shift observed during the first quarter of 2025, cybersecurity experts have documented a dramatic surge in phishing attacks, with threat actors increasingly using this vector to gain acces
Threat Actors Weaponize Language Software to Windows-Based Remote Surveillance Malware
<html><body><p>Senior members of the World Uyghur Congress (WUC) living in exile became targets of a sophisticated spearphishing campaign delivering Windows-based surveillance malware. The attack utilized a trojanized ve
19 APT Hackers Attacking Asia Company’s Servers by Exploiting Vulnerability & Spear Phishing Email
<html><body><p>A significant surge in sophisticated cyber threats has emerged across Asia, with NSFOCUS Fuying Laboratory identifying 19 distinct Advanced Persistent Threat (APT) attack activities in March 2025. These co
Awareness statt Alarmismus – Warum Cybersicherheit mit Phishingsimulation beginnt
<html><body><p>Phishing bleibt ein zentrales Risiko in der Cybersicherheit. Warum Awareness-Schulungen und Phishing-Simulationen heute zum Pflichtprogramm gehören sollten. Entscheidend ist, dass Awareness nicht nur ein T
A large-scale phishing campaign targets WordPress WooCommerce users
<html><body><p>A large-scale phishing campaign targets WordPress WooCommerce users with a fake security alert urging them to download a ‘critical patch’ hiding a backdoor. Patchstack researchers uncovered a large-scale p
WooCommerce admins targeted by fake security patches that hijack sites
<html><body><p>A large-scale phishing campaign targets WooCommerce users with a fake security alert urging them to download a "critical patch" that adds a Wordpress backdoor to the site. [...]</p></body></html>
New Power Parasites Phishing Attack Targeting Energy Companies and Major Brands
<html><body><p>A sophisticated phishing campaign dubbed “Power Parasites” has been actively targeting global energy giants and major brands since 2024, according to a comprehensive threat report released this week. The o
Von Ransomware bis Phishing: Die häufigsten Cyberangriffe und wie Sie sich dagegen wappnen
<html><body><p>Im Folgenden stellen wir die häufigsten Cyberangriffe vor und erläutern, welche Abwehrmaßnahmen sinnvoll sind. Dabei geht es nicht nur um technische Aspekte, sondern auch um organisatorische und menschlich
Threat Actors Registered 26k+ Domains Mimic Brands to Trick Users
<html><body><p>In a significant escalation of digital deception tactics, threat actors have registered over 26,000 domains in March 2025 alone, designed to impersonate legitimate brands and government services. These mal
‘SessionShark’ – A New Toolkit That Evades Microsoft Office 365 MFA Protections
<html><body><p>A sophisticated new phishing toolkit named “SessionShark” has been specifically designed to circumvent Microsoft Office 365’s multi-factor authentication (MFA) protections. SessionShark is being marketed o
New Reports Reveals How AI is Boosting the Phishing Attack Rapidly With More Accuracy
<html><body><p>Cybercriminals have dramatically evolved their phishing tactics, leveraging generative AI to create highly personalized and convincing attacks, according to the newly released ThreatLabz 2025 Phishing Repo
New Stego Campaign Leverages MS Office Vulnerability to Deliver AsyncRAT
<html><body><p>Cybersecurity researchers have discovered a sophisticated malware campaign that employs steganography techniques to hide malicious code within seemingly innocent image files. This attack chain leverages an
Threat Actors Using Weaponized SVG Files to Redirect Users to Malicious Websites
<html><body><p>Phishing campaigns have evolved significantly in 2025, with threat actors increasingly leveraging unconventional file formats to bypass security solutions. A particularly concerning trend involves the weap
Hackers Weaponized Google Forms to Evade Email Security & Steal Logins
<html><body><p>Google Forms, the tech giant’s widely used survey tool, has become a favored weapon in cybercriminals’ arsenal. It enables them to bypass sophisticated email security filters and harvest sensitive credenti
Critical Vulnerabilities in Browser Wallets Let Attackers Drain your Funds
<html><body><p>Significant vulnerabilities in popular browser-based cryptocurrency wallets enable attackers to steal funds without any user interaction or approval. These critical flaws, discovered in wallets including
Phishing detection is broken: Why most attacks feel like a zero day
<html><body><p>Phishing attacks now evade email filters, proxies, and MFA — making every attack feel like a zero-day. This article from Push Security breaks down why detection is failing and how real-time, in-browser ana
RBI Directs All Indian Banks to Transition to .bank.in Domains
<html><body><p>The Reserve Bank of India (RBI) has issued a directive requiring all banking institutions in the country to migrate their web presence to the new .bank.in domain by October 31, 2025. This landmark cyberse
Hackers Exploited 17-year-old Vulnerability to Weaponize Word Documents
<html><body><p>Security researchers at Fortinet’s FortiGuard Labs have uncovered a sophisticated phishing campaign that uses weaponized Microsoft Word documents to deliver information-stealing malware to unsuspecting Win
FBI Warns of Scammers Mimic as IC3 Employees to Defraud Individuals
<html><body><p>The Federal Bureau of Investigation (FBI) has issued an urgent warning about a sophisticated phishing campaign where cybercriminals impersonate Internet Crime Complaint Center (IC3) employees to defraud in