Once a user receives an unsolicited token, a plaintext "memo" field appears in the transaction. The memo field is independent of the wallet used to manage cryptocurrency, making it a universal attack vector.

A new cyber-enabled financial fraud scheme, known as the "rent-a-bank-account" scam, is turning unsuspecting individuals into money mules. This scam is rapidly proliferating and poses a significant threat to financial systems and national security.

A sophisticated SEO poisoning campaign has been uncovered targeting the manufacturing sector, where attackers are leveraging fake payroll portals to steal employee credentials and redirect paychecks.

The network, active since at least February 2025, includes 71 scam domains and 12 merchant accounts, posing significant financial and compliance risks to card issuers and merchant acquirers.

A sophisticated phishing campaign is targeting Apple Pay and Yahoo users. It leverages realistic email and web page impersonations to steal sensitive credentials, financial data, and personal information.

A newly uncovered scam campaign exploits X/Twitter’s ad URL preview feature to deceive users into visiting fraudulent cryptocurrency sites. By manipulating how metadata is fetched for preview cards, attackers display trusted domains.

A newly uncovered fraud syndicate named ALTSRUS is exploiting vulnerable segments of the digital economy by stealing and reselling accounts tied to Electronic Benefit Transfer (EBT), pharmacy prescriptions, and consumer rewards programs.

Bitdefender discovered over 200 incredibly realistic websites offering a wide range of products, including shoes, clothing, and electronics. Customers are tricked into providing credit card information and agreeing to monthly subscriptions.

Cybercriminals are deploying highly sophisticated subscription scams, including deceptive “mystery box” offers, to harvest credit card data and commit financial fraud. These scams are spreading across social media platforms, particularly Facebook.

Chinese cybercriminals are especially active in NFC-enabled fraud and are known for their well-established money laundering chains across multiple continents. They arrange for an NFC-enabled POS terminal and a merchant account linked to it.