APT36 jumps on the coronavirus bandwagon, delivers Crimson RAT
March 16, 2020 - We look at a spear phishing attack from APT36, an Advanced Persistent Threat group posing as the government of India and offering guidance on coronavirus. Instead, users are infected with a Crimson RAT that steals data.
Fraudsters cloak credit card skimmer with fake content delivery network, ngrok server
February 26, 2020 - Criminals set up fraudulent infrastructure that looks like a typical content delivery network—except it isn't. Behind it hides a credit card skimmer injected into Magento online stores.
WOOF locker: Unmasking the browser locker behind a stealthy tech support scam operation
January 22, 2020 - We reveal the inner workings of WOOF locker, the most sophisticated browser locker campaign we've seen to date. Learn how this tech support scam evades researchers and ensnares users by hiding in plain sight.
Hundreds of counterfeit online shoe stores injected with credit card skimmer
December 10, 2019 - A Magecart credit card skimmer was found injected into hundreds of counterfeit, brand-name shoe stores—a one-two punch of victimization for users first duped with fake goods then stripped of their personal data.