CoGUI Phish Kit Targets Japan with Millions of Messages

Proofpoint has observed a notable increase in high-volume Japanese language campaigns targeting organizations in Japan to deliver a phishing kit named CoGUI. Most of the campaigns abuse Amazon, PayPay, Rakuten, and others.

Smishing on a Massive Scale: "Panda Shop" Chinese Carding Syndicate

A new smishing kit named "Panda Shop" has emerged, linked to Chinese cybercriminals and believed to be a rebranded evolution of the Smishing Triad. This kit enables large-scale phishing campaigns targeting global consumers and financial institutions.

Claude AI Exploited to Operate 100+ Fake Political Personas in Global Influence Campaign

A recent investigation by Anthropic has uncovered a sophisticated misuse of its Claude AI chatbot in a commercial “influence-as-a-service” operation. This campaign involved the creation of over 100 politically-aligned fake personas on Facebook and X.

Operation SyncHole: Lazarus APT targets supply chains in South Korea

The campaign has been active since at least November 2024, Lazarus Group is targeting South Korean organizations using watering hole tactics and exploiting software vulnerabilities.

Chrome Extension Uses AI Engine to Act Without User Input

Security researchers from ExtensionTotal have discovered a Chrome extension capable of interacting with local Model Context Protocol (MCP) servers without user permission or detection by Chrome’s security mechanisms.

EM-FI Glitching Attacks Bypass Firmware Protection on GigaDevice GD32F407

Security researchers have demonstrated the successful use of two distinct electromagnetic fault injection (EM-FI) glitching attacks to bypass the hardware-based firmware readout protection of the GigaDevice GD32F407 microcontroller.

Precision-Validated Phishing: A New Threat to Defenders​

A new phishing tactic known as Precision-Validated Phishing is being leveraged by cybercriminals to enhance the effectiveness of credential theft campaigns. This technique uses real-time email validation.

Streaming Services: A New Front for Cybersecurity Threats

A recent phishing campaign has been uncovered targeting Spotify users through a spoofed email that mimics official Spotify communications. The attackers embedded legitimate Spotify URLs within the email to lend credibility.

HR-Themed Phishing Exploits Q1 Evaluations: Stay Alert

A recent phishing campaign exploits the timing of Q1 evaluations by impersonating internal HR communications to deceive employees. The campaign culminates in credential theft via a spoofed Microsoft login page.

Double-Edged Email Attacks: Phishing & Malware Tactics​

A recent phishing campaign leverages a dual-threat strategy combining credential harvesting and malware delivery. Disguised as a file deletion alert, the attack exploits user trust to deploy the ConnectWise RAT or steal Office365 credentials.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags