Threat actors are buying ads for malicious websites to trick victims into downloading malware, leading to potential data theft and ransomware. Ads on search engines and social media are utilised due to their wide-ranging controls. Four malware families have been identified in these campaigns: PAPERDROP, PAPERTEAR, DANABOT, and DARKGATE, all of which have unique functions and capabilities.

New KoiLoader Abuses Powershell Scripts to Deliver Malicious Payload
Researchers have uncovered a new strain of the advanced KoiLoader malware, believed to be distributed through phishing emails posing as bank statements. The malware employs