news.fmisec.comFake enterprise VPN downloads used to steal company credentialsA threat actor tracked as Storm-2561 is distributing fake enterprise VPN clients from Ivanti, Cisco, and Fortinet to steal VPN credentials from unsuspecting users. The attackers manipulate search results (SEO poisoning) for common queries like “Pulse...1h ago·2 min read
news.fmisec.comPolice sinkholes 45,000 IP addresses in cybercrime crackdownAn international law enforcement action codenamed "Operation Synergia III" has sinkholed tens of thousands of IP addresses and seized servers linked to cybercrime operations worldwide. During this Interpol-led operation, which took place between July...1h ago·2 min read
news.fmisec.comGoing the Extra Mile: Travel Rewards Turn into Underground Currency.* Airline miles were designed as rewards, however, in cybercrime markets, they are inventory. In many cases, the theft begins with and ends with miles quietly converted into flights and hotel stays. Flare researchers analyzed hundreds of posts from u...1d ago·4 min read
news.fmisec.comTelus Digital confirms breach after hacker claims 1 petabyte data theftCanadian business process outsourcing giant Telus Digital has confirmed it suffered a security incident after threat actors claimed to have stolen nearly 1 petabyte of data from the company in a multi-month breach. Telus Digital is the digital servic...1d ago·5 min read
news.fmisec.comNew BeatBanker Android malware poses as Starlink app to hijack devicesA new Android malware named BeatBanker can hijack devices and tricks users into installing it by posing as a Starlink app on websites masquerading as the official Google Play Store. The malware combines banking trojan functions with Monero mining, an...2d ago·3 min read
