From phishing kits to rogue ransomware, the digital threat landscape is constantly evolving. A new campaign is using the Gophish toolkit to distribute DarkCrystal RAT and PowerRAT to Russian-speaking users. At the same time, macOS users are facing a new ransomware strain that pretends to be LockBit, encrypting data and displaying a fake LockBit banner. And if that weren’t enough, over 1,800 mobile apps were found with hardcoded credentials for cloud services, exposing sensitive user data and source code to potential compromise. Read on for more.