Threat actors are increasingly abusing trusted advertising platforms and AI-related branding to distribute malware. By impersonating legitimate software downloads via search ads, attackers can trick users into installing malicious payloads while appearing credible. New reporting from Cybersecurity News reveals a macOS malware campaign leveraging fake Claude AI advertisements in Google Search results to deliver malicious
Read More
Mobile device management platforms hold deep access into enterprise environments, making them highly valuable targets for attackers. When vulnerabilities emerge in these systems, the impact can extend far beyond a single device. New reporting from Cybersecurity News reveals that a zero-day vulnerability in Ivanti Endpoint Manager Mobile (EPMM) is being actively exploited in the wild.
Read More
Trusted software and signed components are increasingly being abused as entry points for sophisticated attacks. When attackers leverage legitimate mechanisms like screensavers, detection becomes significantly more difficult. New reporting from GBHackers reveals that DigiCert was targeted in a screensaver-based attack, highlighting how adversaries are using unconventional execution paths to bypass traditional defenses. This campaign demonstrates
Read More
Malware authors are increasingly using multi-stage delivery techniques to evade detection, blending malicious payloads into seemingly harmless file formats. New reporting from Cybersecurity News reveals that Vidar is delivering its payload through JPEG and TXT files while leveraging scripting, obfuscation, and in-memory execution to remain undetected. The campaign combines multiple evasion layers, making it difficult
Read More