The malware used in the campaign hides in legitimate files using scrambled variables and custom functions like HttpClient, rand, and token. These methods evade detection and hinder analysis by researchers.

The new malware campaign targets users by sending direct messages on platforms like Discord, asking if they want to beta test a new video game. These messages often appear to come from the game’s developer.

This campaign combines misleading ads and fake software brand pages, ultimately leading users to a false Cloudflare notification that asks them to run specific key combinations.

The ads pretended to be the company's HR portal for benefits and paystub access. The threat was aimed at stealing employee login details, but instead of phishing, it led victims to a compromised website that asked them to update their browser.

Victims clicking malicious Google ads are redirected to fake sites mimicking official printer brands, where scammers lure them into calling for support by offering printer drivers that fail to install.

Tech support scammers are again stooping low with their email campaigns. This one hints that one of your contacts may have met an untimely end. It all starts with an email titled “Sad announcement” followed by a full name of someone you know.

We’ve seen two main lures, both via Google ads: the first one is simply a website promoting online support for QuickBooks and shows a phone number, while the latter requires victims to download and install a program that will generate a popup.

Malwarebytes reported the resurgence of the FakeBat (aka Eugenloader, PaykLoader) malware loader after a months-long hiatus. FakeBat was detected via a malicious Google ad impersonating the productivity app Notion.

Tech support scammers are targeting eBay customers in the U. S. through fraudulent Google ads. Upon investigating, multiple Sponsored results from at least four different advertiser accounts were identified.

Cybercriminals are using Microsoft's Bing search engine to trick people into giving away their bank account information. They create fake websites that look like real bank login pages and then get those websites to appear high in the search results.