Cybercriminals are pushing boundaries with deceptive tactics, blending trusted platforms with new tools to breach defenses. Black Basta ransomware affiliates have begun posing as Microsoft Teams IT support, deploying emails and QR codes to trick users into giving up access. In another campaign, HeptaX, a cyberespionage scheme, has been sending phishing emails to alter RDP settings and steal credentials. Meanwhile, a Discord bot is being exploited to spread the PySilon RAT, giving attackers unauthorized control over users' devices. Here are the top 10 highlights from the past 24 hours.