Hackers Use Rokarolla Banking Trojan to Intercept SMS Codes and Steal Crypto Credentials
A new Android banking trojan called Rokarolla is targeting banking and cryptocurrency users by pretending to be trusted apps such as Google Chrome, TikTok and…
A new Android banking trojan called Rokarolla is targeting banking and cryptocurrency users by pretending to be trusted apps such as Google Chrome, TikTok and…
UNC1151, the hacking group widely associated with the Ghostwriter influence campaign, has been linked to a targeted Gmail phishing attempt against Belarusian opposition politician Yuras…
Millenium RAT has re-emerged as a larger and more capable Windows threat after a major rewrite from .NET to native C++. Researchers at Group-IB say…
A legitimate Chinese development framework called DCloud Uni-App has become a common foundation for large-scale online scam infrastructure. New research from Infoblox Threat Intel links…
Security researchers at SpecterOps have shown that large language models can generate basic Mythic agents from a written prompt, then test and prepare them for…
A newly documented Windows injection technique shows how attackers could abuse a legitimate win32k.sys callback path to run code inside another GUI process. The method…
Security researchers have warned that malicious ClawHub skills can turn AI agents into a path for remote control, credential theft and data exfiltration. A new…
Russia-linked Turla has added a .NET backdoor called STOCKSTAY to its espionage toolkit, with Ukraine government and military organizations among the main targets. The malware…
OpenAI has started a limited preview of GPT-5.6, led by its new flagship model, GPT-5.6 Sol. The new model family also includes Terra for balanced…
RedAmon is an open-source AI red team framework that connects reconnaissance, exploit validation, post-exploitation, vulnerability triage, and code remediation in one workflow. The project’s GitHub…