News

TamperedChef serves bad ads, with infostealers as the main course

Bys s January 16, 2026

Sophos X-Ops explores a malvertising campaign that leverages Google Ads to distribute an infostealer

Categories: Threat Research

Tags: TamperedChef, EvilAI, infostealer, Sophos X-Ops

News

CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download
Bys s April 18, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a medium-severity security flaw impacting Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation in the wild. The vulnerability, assigned the CVE identifier CVE-2025-24054 (CVSS score: 6.5), is a Windows New Technology LAN Manager (NTLM) hash disclosure

Read More CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download
News

Cybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing Campaign
Bys s January 2, 2026

Cybersecurity researchers have disclosed details of a phishing campaign that involves the attackers impersonating legitimate Google-generated messages by abusing Google Cloud’s Application Integration service to distribute emails. The activity, Check Point said, takes advantage of the trust associated with Google Cloud infrastructure to send the messages from a legitimate email address (“

Read More Cybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing Campaign
News

When ransomware listings create confusion as to who the victim was
Bys s June 4, 2025

When a ransomware gang names one target but links to another target or posts a description of a different target, journalists and researchers may understandably be left wondering who was attacked. If the threat actors have posted proof of claims, it may be possible to figure out who the target was, but with no proof…

Read More When ransomware listings create confusion as to who the victim was
News

Four-Faith Industrial Router Vulnerability Exploited in Attacks
By December 30, 2024

Threat actors are exploiting a command injection vulnerability in Four-Faith industrial routers to deploy a reverse shell. The post Four-Faith Industrial Router Vulnerability Exploited in Attacks appeared first on SecurityWeek.

Read More Four-Faith Industrial Router Vulnerability Exploited in Attacks
News

Furry hackers who leaked Project 2025 firm’s data fear leader raided by feds
Bys s March 27, 2025

Mikael Thalen reports: Individuals with connections to SiegedSec, the now-defunct group of “gay furry hackers” who leaked data relating to the think tank behind Project 2025, believe their former leader may have been arrested in a raid by law enforcement. In remarks to X on Wednesday, @mewmrrpmeow, a former member of the group, stated that “vio,” who once…

Read More Furry hackers who leaked Project 2025 firm’s data fear leader raided by feds
News

How to Eliminate Identity-Based Threats
Bys s January 23, 2025

Despite significant investments in advanced technologies and employee training programs, credential and user-based attacks remain alarmingly prevalent, accounting for 50-80% of enterprise breaches[1],[2]. While identity-based attacks continue to dominate as the leading cause of security incidents, the common approach to identity security threats is still threat reduction, implementing layers of

Read More How to Eliminate Identity-Based Threats

Similar Posts