A recent DOJ operation has uncovered a large-scale North Korean impersonation scheme involving the theft of over 80 American identities. These identities were used to fraudulently secure remote IT jobs at more than 100 U.S. companies.

A campaign targeting WordPress websites involves attackers brute-forcing wp-admin credentials to deploy spam posts and pages for blackhat SEO purposes. The attackers use two malicious plugins to conceal their activity and maintain persistent access.

A new variant of the long-running "sextortion" scam campaign has emerged, featuring increased ransom demands, spoofed email addresses, and references to Pegasus spyware. The email usually starts with “Hello pervert.”

A UK government website originally created for the Home Office’s 2022 “No Place to Hide” anti-encryption campaign has been hijacked to promote a payday loan scheme. The campaign was initially expected to target Facebook Messenger.

A widespread and highly coordinated phishing campaign is targeting U.S. citizens by impersonating state Departments of Motor Vehicles (DMVs). The campaign uses smishing tactics to steal personal and financial data through fake DMV websites.

Once a user receives an unsolicited token, a plaintext "memo" field appears in the transaction. The memo field is independent of the wallet used to manage cryptocurrency, making it a universal attack vector.

A new cyber-enabled financial fraud scheme, known as the "rent-a-bank-account" scam, is turning unsuspecting individuals into money mules. This scam is rapidly proliferating and poses a significant threat to financial systems and national security.

A sophisticated SEO poisoning campaign has been uncovered targeting the manufacturing sector, where attackers are leveraging fake payroll portals to steal employee credentials and redirect paychecks.

The network, active since at least February 2025, includes 71 scam domains and 12 merchant accounts, posing significant financial and compliance risks to card issuers and merchant acquirers.

A sophisticated phishing campaign is targeting Apple Pay and Yahoo users. It leverages realistic email and web page impersonations to steal sensitive credentials, financial data, and personal information.