“Can you test my game?” Fake itch.io pages spread hidden malware to gamers

The campaign leverages compromised Discord accounts to send direct messages asking users to test a game. Victims are redirected to convincing fake game pages hosted on Blogspot subdomains or cloud services.

Western Sydney University Targeted in Widespread Email Scam Causing Student Distress

Western Sydney University has been targeted in a widespread phishing scam involving fraudulent emails sent to students and alumni. These emails falsely claimed that recipients’ degrees had been revoked.

Don’t connect your wallet: Best Wallet cryptocurrency scam is making the rounds

A phishing campaign is targeting cryptocurrency users by impersonating the Best Wallet app. The attackers aim to steal wallet credentials, private keys, and seed phrases by luring victims to a fake website that closely mimics the legitimate platform.

Scam Facebook groups send malicious Android malware to seniors

Attackers used social engineering methods to lure targets into joining fake Facebook groups that appeared to promote travel and community activities—such as trips, dance classes, and community gatherings.

AI made crypto scams far more dangerous

The first half of 2025 witnessed a surge in AI-powered cryptocurrency scams, resulting in over $3.01 billion in stolen assets. These scams leverage artificial intelligence to automate and scale phishing, impersonation, and malware distribution.

SlopAds Fraud Ring Exploits 224 Android Apps to Drive 2.3 Billion Daily Ad Bids

A large-scale mobile ad fraud operation dubbed SlopAds exploited 224 Android apps, amassing over 38 million downloads across 228 countries. The campaign generated up to 2.3 billion ad bid requests daily by leveraging hidden WebViews and steganography

Feds seek to claim $5 million in bitcoin taken in SIM swaps

The DOJ is pursuing civil forfeiture of approximately $5 million in Bitcoin stolen through SIM swapping attacks. These attacks targeted five victims, exploiting mobile phone number hijacking to gain unauthorized access to cryptowallets.

'SEO fraud-as-a-service' scheme hijacks Windows servers to promote gambling websites

A newly identified threat actor group, GhostRedirector, has launched a global "SEO fraud-as-a-service" campaign targeting Windows servers to promote gambling websites. The campaign leverages two custom backdoors - Rungan and Gamshen.

New WhatsApp Scam Poses Serious Risk: Hackers Can Hijack Your Chats

Users of the popular messaging app WhatsApp are being targeted by a new, highly deceptive scam that grants attackers full access to victims’ contacts, chat history, and media files.

Fraudster stole over $1.5 million from city of Baltimore

A BEC attack targeting the City of Baltimore resulted in the theft of over $1.5 million through fraudulent EFTs. The attacker impersonated a legitimate vendor and manipulated internal processes to redirect payments to unauthorized accounts.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags