Threatpost

The BloodyStealer trojan helps cyberattackers go after in-game goods and credits.

A 'nearly impossible to analyze' version of the malware sports a bootkit and 'steal-everything' capabilities.

UPDATE: Indicators of compromise are now available. The unredacted RCE exploit released on Monday allows unauthenticated, remote attackers to upload files to the vCenter Server analytics service.

Microsoft is warning that the Nobelium APT is compromising single-sign-on servers to install a post-exploitation backdoor that steals data and maintains network persistence.

The spoofed email has targeted close to 75K inboxes, slipping past spam and security controls across Office 365, Google Workspace, Exchange, Cisco ESA and more.

Ekaterina Kilyusheva, head of the Information Security Analytics Research Group at Positive Technologies, offers a blueprint for locking up the fortress.

Income level, education and being part of a disadvantaged population all contribute to cybercrime outcomes, a survey suggests.

It's not the first time that the disinformation/spearphishing campaign, which originally smeared NATO, has been linked to Russia.

Combined cache of data likely to fuel rash of account takeover, smishing attacks, experts warn.

Hundreds of thousands of email credentials, many of which double as Active Directory domain credentials, came through to credential-trapping domains in clear text.