Phishing attacks have increased 4% in Q1 2024, with 800,000 victims. Despite Two-Factor Authentication (2FA) being used as a line of defence, the Astaroth malware has been discovered bypassing 2FA. It lures victims to fraudulent webmail pages to steal credentials, session cookies, and 2FA codes, while information about the victim’s devices is also stolen. The malware is being sold by unidentified distributors difficult to track.
Salt Typhoon used custom malware JumbledPath to spy on U.S. telecom providers
China-linked APT group Salt Typhoon has been using a custom malware named JumbledPath to spy on US telecom providers. Insikt Group highlighted that several US
