SecureList

MARCH 3, 2025

million attacks involving malware, adware or unwanted mobile software were prevented. million malicious and potentially unwanted installation packages were detected, almost 69,000 of which associated with mobile banking Trojans. million malware, adware or unwanted software attacks targeting mobile devices. A total of 1.1

Mobile 115

Mobile Malware Adware Banking 115

Malwarebytes

MARCH 17, 2025

Instead of converting files, the tools actually load malware onto victims computers. The FBI warned specifically about that malware leading to ransomware attacks, but we’ve also seen similar sites that install browser hijackers, adware, and potentially unwanted programs (PUPs). This is the actual malware. Imageconvertors[.]com

Malware 135

Malware Adware Education Phishing 135

Krebs on Security

FEBRUARY 8, 2021

Cyber cops in Ukraine carried out an arrest and several raids last week in connection with the author of a U-Admin , a software package used to administer what’s being called “one of the world’s largest phishing services.” The U-Admin phishing panel interface. Image: fr3d.hk/blog. ” U-Admin, a.k.a.

Phishing 341

Phishing Scams Banking Mobile 341

Malwarebytes

FEBRUARY 11, 2025

There are plenty of phish in the sea, and the latest ones have little interest in your email inbox. In 2024, Malwarebytes detected more than 22,800 phishing apps on Android, according to the recent 2025 State of Malware report. These Android phishing apps may sound high-tech, but they are not.

Phishing 123

Phishing Passwords Authentication Mobile 123

Security Affairs

MARCH 28, 2025

Grandoreiro Banking Trojan resurfaces, targeting users in Latin America and Europe in new phishing campaigns. Forcepoint X-Labs researchers warn of new phishing campaigns targeting Latin America and Europe in new phishing campaigns. Attackers also employ encrypted or password-protected files to evade security detection.

Banking 87

Banking Phishing Malware Passwords 87

Penetration Testing

JUNE 8, 2025

"EnigmaCyberSecurity" is a new multi-stage cybercrime campaign hitting Brazil and beyond, using phishing, malicious extensions, and RATs to steal banking data.

Banking 70

Banking Cybercrime Malware Phishing 70

Krebs on Security

SEPTEMBER 1, 2023

Domain names ending in “ US ” — the top-level domain for the United States — are among the most prevalent in phishing scams, new research shows. government, which is frequently the target of phishing domains ending in.US. US phishing domains.US This is noteworthy because.US is overseen by the U.S.

Phishing 311

Phishing Telecommunications Government DNS 311

Krebs on Security

NOVEMBER 9, 2024

” In a hypothetical example, a scammer uses a hacked government email account to request that a service provider place a hold on a specific bank or crypto account that is allegedly subject to a garnishment order, or party to crime that is globally sanctioned, such as terrorist financing or child exploitation. dot-gov emails get hacked.

Hacking 294

Hacking Accountability Government Social Engineering 294

Security Affairs

MARCH 31, 2025

Morphing Meerkat phishing kits exploit DNS MX records to deliver spoofed login pages, targeting over 100 brands. Threat actors are exploiting DNS techniques to enhance phishing attacks, using MX records to dynamically serve spoofed login pages. “We discovered cyber campaigns that used the phishing kits as early as January 2020.

DNS 84

DNS Phishing Banking Hacking 84

eSecurity Planet

FEBRUARY 26, 2025

Cybercriminals are shifting their focus from emails to text messages, using mishing a more deceptive form of phishing to target mobile users and infiltrate corporate networks, according to new security research by Zimperium. Vishing: Also known as voice phishing. What is mishing? and 9%in Brazil.

Phishing 82

Phishing Mobile Social Engineering Data breaches 82

The Hacker News

OCTOBER 16, 2024

A new spear-phishing campaign targeting Brazil has been found delivering a banking malware called Astaroth (aka Guildma) by making use of obfuscated JavaScript to slip past security guardrails.

Banking 118

Banking Phishing Malware Retail 118

Krebs on Security

FEBRUARY 28, 2024

But clicking the meeting link provided by the scammers prompts the user to run a script that quietly installs malware on macOS systems. It didn’t dawn on Doug until days later that the missed meeting with Mr. Lee might have been a malware attack. ” Image: SlowMist.

Malware 334

Malware Cryptocurrency Software Phishing 334

Penetration Testing

APRIL 8, 2025

Cybercriminals are actively distributing the Grandoreiro banking trojan through large-scale phishing campaigns, primarily targeting banking users in Latin America and Europe. According to a report by Forcepoint X-Labs, this resurgence involves the use of advanced techniques to evade detection and maximize impact.

Phishing 76

Phishing Banking Cybersecurity Malware 76

Tech Republic Security

MAY 23, 2024

Find out how Grandoreiro banking trojan campaigns work and the countries targeted, as well as how to mitigate this malware threat.

Banking 189

Banking Malware Social Engineering Cryptocurrency 189

Malwarebytes

JUNE 19, 2025

These malware variants silently extract credentials stored in browsers, email clients, messaging apps, and even crypto wallets, and send the data to cybercriminals. Targeted phishing : Combining leaked data allows cybercriminals to engage in very convincing and personalized scams. 2FA that relies on a FIDO2 device can’t be phished.

Identity Theft 134

Identity Theft Passwords Phishing Accountability 134

The Hacker News

MARCH 27, 2024

A new phishing campaign has been observed leveraging a novel loader malware to deliver an information stealer and keylogger called Agent Tesla. Trustwave SpiderLabs said it identified a phishing email bearing this attack chain on March 8, 2024. The archive ("Bank Handlowy w Warszawie

Banking 133

Banking Phishing Malware 133

The Hacker News

NOVEMBER 12, 2021

Threat actors are increasingly banking on the technique of HTML smuggling in phishing campaigns as a means to gain initial access and deploy an array of threats, including banking malware, remote administration trojans (RATs), and ransomware payloads.

Phishing 145

Phishing Malware Banking Ransomware 145

Malwarebytes

APRIL 3, 2025

Recently weve been seeing quite a few phishing campaigns using QR codes in email attachments. The lure and the targets are varied, but the use of a QR code to get someone to visit the phishing site is fast becoming a preferred method for cybercriminals. For example, banking apps will be often be installed on the same device.

Phishing 136

Phishing Banking Mobile Accountability 136

Security Affairs

NOVEMBER 11, 2024

Fortinet researchers discovered a new phishing campaign spreading a variant of the commercial malware Remcos RAT. Fortinet’s FortiGuard Labs recently uncovered a phishing campaign spreading a new variant of the Remcos RAT. Upon opening the file, the RCE vulnerability CVE-2017-0199 is exploited.

Phishing 129

Phishing Malware Banking Encryption 129

The Hacker News

MARCH 11, 2024

Users in Brazil are the target of a new banking trojan known as CHAVECLOAK that's propagated via phishing emails bearing PDF attachments. This intricate attack involves the PDF downloading a ZIP file and subsequently utilizing DLL side-loading techniques to execute the final malware," Fortinet FortiGuard Labs researcher Cara Lin said.

Banking 132

Banking Phishing Malware 132

Heimadal Security

OCTOBER 13, 2022

New research conducted by a Dutch mobile security company recently discovered a network of phishing websites targeting Italian online-banking users to get a hold of their credentials. The post New Android Banking Malware Deployed Using Vishing appeared first on Heimdal Security Blog. How […].

Banking 124

Banking Malware Social Engineering Mobile 124

SecureList

MARCH 25, 2025

Note that for mobile banking malware, we retrospectively revised the 2023 numbers to provide more accurate statistics. We also changed the methodology for PC banking malware by removing obsolete families that no longer use Trojan banker functionality, hence the sharp drop in numbers against 2023. million in 2023.

Phishing 77

Phishing Banking Scams Mobile 77

Heimadal Security

FEBRUARY 8, 2022

Medusa malware was noticed to target multiple geographic regions. More Details on Medusa Malware A new report from the ThreatFabric researchers came out revealing insights into the latest methods employed by this banking Trojan. Medusa malware, also known as TangleBot, has been leveraged in North America and […].

Phishing 136

Phishing Malware Banking Cybersecurity 136

Malwarebytes

FEBRUARY 27, 2024

For the most popular operating system in the world—which is Android and it isn’t even a contest —there’s a sneaky cyberthreat that can empty out a person’s bank accounts to fill the illicit coffers of cybercriminals. What are Android banking trojans? Take the SharkBot banking trojan, which Malwarebytes detects and stops.

Banking 144

Banking Passwords Accountability Malware 144

Malwarebytes

APRIL 30, 2025

They access and exfiltrate sensitive information such as banking details, personal identification numbers, and confidential files. There are several circumstances that make this campaign hard to detect: The cybercriminals send phishing emails from compromised WordPress sites, so the domains themselves appear legitimate and not malicious.

Computers and Electronics 142

Computers and Electronics Identity Theft Phishing Banking 142

Hacker's King

DECEMBER 17, 2024

The cybersecurity world has been abuzz with news of a new Linux variant of FASTCash, a sophisticated malware targeting the banking sector. FASTCash has gained notoriety for its ability to bypass banking security protocols, enabling cybercriminals to withdraw massive amounts of cash from ATMs.

Banking 52

Banking Social Engineering Malware Cyber threats 52

The Hacker News

MAY 19, 2024

The threat actors behind the Windows-based Grandoreiro banking trojan have returned in a global campaign since March 2024 following a law enforcement takedown in January.

Banking 131

Banking Phishing Malware 131

Jane Frankland

MAY 16, 2025

Here’s a breakdown of the most widespread and damaging scams today: Impersonation Scams (51% of fraud cases) where fraudsters pose as: Banks, HMRC, DVLA, or government agencies. in parking lots) redirect to malware ridden websites. Passkeys are the gold standard phishing-resistant, cryptographic credentials tied to your device.

Scams 130

Scams Password Management Passwords Banking 130

Daniel Miessler

MARCH 10, 2022

The answer is remarkably simple, actually— phishing. A growing percentage of malware packages now include prompts for not only a username and password, but also an MFA code. This means traditional MFA is becoming increasingly useless against phishing in the real world. The answer is yes. Get started with WebAuthn >>.

Authentication 364

Authentication Phishing Passwords Accountability 364

Heimadal Security

JANUARY 4, 2023

Threat actors use data stolen from Columbian bank customers as lures in email phishing attacks. On the bright side, according to researchers, none of the sensitive data exfiltrated from the bank seems to have been spilled on the dark web or […].

Banking 119

Banking Malware Phishing Cybersecurity 119

Krebs on Security

FEBRUARY 17, 2021

billion from banks and other victims worldwide. Confirmed thefts attributed to the group include the 2016 hacking of the SWIFT payment system for Bangladesh Bank, which netted thieves $81 million; $6.1 In reality, prosecutors say, the programs were malware or downloaded malware after the applications were installed.

Cryptocurrency 344

Cryptocurrency Financial Services Banking Government 344

Security Affairs

MAY 19, 2024

A new Grandoreiro banking trojan campaign has been ongoing since March 2024, following the disruption by law enforcement in January. IBM X-Force warns of a new Grandoreiro banking trojan campaign that has been ongoing since March 2024. The banking Trojan is likely operated as a Malware-as-a-Service (MaaS).

Banking 133

Banking Malware Antivirus Accountability 133

Malwarebytes

NOVEMBER 5, 2024

With access to your email account, a cybercriminal can find a lot of useful information about you, such as where you bank, your account numbers, your favorite shops, and more. Cybercriminals could use your account to spread spam and phishing emails to your contacts.

Accountability 145

Accountability Authentication Banking Malware 145

The Hacker News

FEBRUARY 27, 2024

Mexican users have been targeted with tax-themed phishing lures at least since November 2023 to distribute a previously undocumented Windows malware called TimbreStealer.

Phishing 129

Phishing Malware Scams Banking 129

The Hacker News

DECEMBER 1, 2021

Socially engineered SMS messages are being used to install malware on Android devices as part of a widespread phishing campaign that impersonates the Iranian government and social security services to make away with credit card details and steal funds from victims' bank accounts.

Phishing 144

Phishing Social Engineering Banking Engineering 144

SecureList

NOVEMBER 29, 2024

million attacks involving malware, adware or potentially unwanted mobile apps were prevented. More than 222,000 malicious and potentially unwanted installation packages were detected, of which: 17,822 were associated with mobile banking Trojans. These downloaders can introduce both ads and malware onto your phone. 9.79 -1.65

Mobile 100

Mobile Adware Banking Malware 100

Security Affairs

JUNE 18, 2022

Malibot is a new Android malware targeting online banking and cryptocurrency wallet customers in Spain and Italy. F5 Labs researchers spotted a new strain of Android malware, named Malibot, that is targeting online banking and cryptocurrency wallet customers in Spain and Italy. ” concludes the report.

Banking 145

Banking Cryptocurrency Malware Mobile 145