Trustwave SpiderLabs uncovered a resurgence of a malicious campaign in February 2025. The attack involves tricking users, via fake CAPTCHA verifications on compromised websites, into executing a multi-stage chain of PowerShell commands to deliver malware. The malware – Lumma and Vidar, are used to steal sensitive data from infected systems. The attackers use multiple techniques, such as large file sizes, to evade detection. Trustwave advises organizations to be vigilant against deceptive CAPTCHA prompts.
86,000+ Healthcare Staff Records Exposed Due to AWS S3 Misconfiguration
A HealthTech company from New Jersey, ESHYFT, recently had an unprotected database exposed, according to cybersecurity researcher Jeremiah Fowler. The discovered database held approximately 108.8GB
