🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

A new report by DomainTools details a "massive, ongoing campaign of malicious Chrome extensions". #Chrome #Google #cybersecurity #malicious #datasecurity cnews.link/hundred-chrome…

SecuritySnacks Excellent report, I have found a few more to add to the collection: github.com/motuariki/IOCs…

Looking for smart reads & listens in cyber? @Neurovagrant shares what’s buzzing on our team’s radar this week: 🎧 Maltego's Human Element 📚 The Citizen Lab 📰 Nextgov/FCW 🔍 Threat Insight Full list 👉 dti.domaintools.com/cybersecurity-…

Warning! Malicious Chrome extensions found mimicking legit tools pcworld.com/article/279151… pcworld.com/article/279151…

ICYMI: Malware is hiding in Chrome extensions. DTI uncovered a campaign using dual-function extensions—posing as VPNs, crypto tools, or media editors—to exfiltrate data while appearing legit. 📘 Full analysis: dti.domaintools.com/dual-function-… #CyberSecurity #Malware #ChromeExtensions

A spoofed antivirus download page is delivering VenomRAT, StormKitty, and SilentTrinity—a powerful combo for credential theft, persistence, and long-term access. Full breakdown: dti.domaintools.com/venomrat/?utm_… #CyberSecurity #ThreatIntel #MalwareAnalysis #Infosec

🚨 Hackers built a fake Bitdefender site to push Venom RAT—stealing passwords, crypto, and control. Behind it? A stealthy combo of open-source tools, MFA bypass tricks, and real-time phishing tactics. You won’t believe what they’re exploiting now. Read: thehackernews.com/2025/05/cyberc…

DomainTools Crooks use a fake #antivirus site to spread #Venom #RAT and a mix of malware securityaffairs.com/178366/malware… #securityaffairs #hacking #malware

"The attackers used websites that mimicked popular brands to trick users into installing the apps that had been laced with malware designed to steal passwords and digital wallets." Read more from Forbes here: forbes.com/sites/zakdoffm…

ICYMI! Ian Campbell's latest Recommended Reading list is out. This edition features Maltego's Human Element Podcast hosted by Ben April! Learn more and see Ian's other Recommended picks here: dti.domaintools.com/cybersecurity-…

What do cats have to do with Lumma C2 malware? Some domains linked to the infostealer use a landing page titled “About Cats” 🐱 How many domains? Avg risk score? IOC overlaps? 🔗 Read more: domaintools.com/resources/blog…

🎵 Newsletter No. 5 is here! Daniel Schwalbe, CISO DomainTools, shares the latest on: 🔹 VenomRAT via fake sites 🔹 Malicious Chrome extensions 🔹 Exploiting viral media events Read the full scoop 👉 domaintools.com/resources/blog…

🚨 Watch your clipboard! A fake DocuSign site tricks users into running malware with a sneaky PowerShell script—copied via CAPTCHA. ✔️ Clipboard poisoning ✔️ Fake Gitcode & DocuSign sites ✔️ NetSupport RAT deployed 👀 Learn how it works → thehackernews.com/2025/06/fake-d…

FIN6 (Skeleton Spider) is using AWS & fake resumes to deliver malware via trusted job platforms. ⚠️ Realistic lures 🕵️‍♂️ Cloud-hosted phishing 🥚 More_eggs backdoor Read the full analysis here: dti.domaintools.com/skeleton-spide…

FIN6 hackers pose as job seekers to backdoor recruiters’ devices - Bill Toulas bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

"The financially motivated threat actor known as FIN6 has been observed leveraging fake resumes hosted on Amazon Web Services (AWS) infrastructure to deliver a malware family called More_eggs." Read more from The Hacker News here: thehackernews.com/2025/06/fin6-u…

"In a twist on typical hiring-related social engineering attacks, the FIN6 hacking group impersonates job seekers to target recruiters, using convincing resumes and phishing sites to deliver malware." Read more from BleepingComputer here: bleepingcomputer.com/news/security/…

ICYMI: Skeleton Spider (FIN6) is using trusted cloud services like AWS to deliver malware via fake resumes & job lures. Social engineering meets stealthy infrastructure. Learn more here: dti.domaintools.com/skeleton-spide…