Hackers are exploiting trust in financial transactions by sending weaponized invoices with malware or malicious links. Cybersecurity researchers at Perception Point have found a sophisticated malware dubbed “LUMMA” and developed a new technology to identify and isolate it. The attack deceives victims with a fake invoice email that eventually redirects to harmful URLs, triggering an automatic download of malicious files. The LUMMA malware steals information and spreads through Malware-as-a-Service.
Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is
