Cybersecurity researchers from CyFirma have detected a fake Telegram app, dubbed “FireScam”, being distributed via fraudulent websites that mimic Russia’s app store, RuStore. Acting as a Telegram premium version, it steals victims’ login credentials and other sensitive data. The malware displays a fake Telegram login page, monitors user activity, notifications, clipboard data and more, then extracts the data to a third party server. Attribution to a known threat actor remains unknown.
North Korean Hackers Use Fake U.S. Companies to Spread Malware in Crypto Industry: Report
North Korean hackers reportedly set up shell companies in the US to penetrate the crypto sector and target developers via fake job offers, according to
