News

CSO Online11d
How phishers are weaponizing SVG images in zero-click, evasive campaigns
Seemingly harmless SVGs are packed with malicious JavaScript for a phishing redirect to actor-controlled URLs.
SecurityWeek11d
Threat Actors Use SVG Smuggling for Browser-Native Redirection
The malicious code is hidden within a CDATA section of the SVG file and relies on a static XOR key to decrypt a payload at ...
Delete Any Emails That Include These Images On Your Phone Or PC
Because these attackers leverage spoofed domains and senders to trick you, it isn’t as easy as just avoiding emails from unknown senders. Instead, you should delete any email with an .SVG attachment ...
Delete Any Emails On Your Phone Or PC That Include These Images
Because the latest attacks leverage spoofed domains and senders to trick you, it isn’t as easy as just avoiding emails from ...
The Hacker News5d
Hackers Use GitHub Repositories to Host Amadey Malware and Data Stealers, Bypassing Filters
Malicious GitHub repositories used by threat actors to host Amadey payloads and steal data, impacting targeted entities.