Google exposes BadAudio malware used in APT24 espionage campaigns

China-linked APT24 hackers have been using a previously undocumented malware called BadAudio in a three-year espionage campaign that recently switched to more sophisticated attack methods.
The Hacker News

⚡ Weekly Recap: Fortinet Exploit, Chrome 0-Day, BadIIS Malware, Record DDoS, SaaS Breach & More

Big firms like Microsoft, Salesforce, and Google had to react fast — stopping DDoS attacks, blocking bad links, and fixing ...
The Hacker News

TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign

TamperedChef spreads through fake installers and SEO abuse, delivering a persistent JavaScript backdoor across multiple ...

Sneaky2FA Phishing Kit Evolves With New Fake Browser Pop-Up Trick

Security researchers at Push Security are warning that Sneaky2FA, an advanced phishing-as-a-service (PhaaS) kit, has released ...
TechJuice

North Korea-Linked ‘Job Interview’ Trap Evolves: JSON Storage Used to Host Malware

A North Korea-linked hacking campaign hides advanced malware inside public JSON storage services during fake job tests.

Sneaky2FA PhaaS kit now uses redteamers' Browser-in-the-Browser attack

Sneaky2FA, a popular among cybercriminals phishing-as-a-service (PhaaS) kit, has added Browser-in-the-Browser (BitB) capabilities, giving "customers" the option to launch highly deceptive attacks.
CSO Online

Sneaky2FA phishing tool adds ability to insert legit-looking URLs

With its new browser-in-the-browser capability, the tool helps threat actors fool employees into giving up credentials.
BankInfoSecurity

TamperedChef Exploits Signed Apps for Stealth

Threat actors are weaponizing trusted software certificates to deliver stealthy malware and compromise enterprise networks through fraudulent, signed applications, ...