Microsoft has reported an ongoing phishing campaign, known as Storm-1865, that targets the hospitality sector by impersonating Booking.com. The campaign uses a social engineering technique called ClickFix to trick users into downloading malicious software. The attack involves sending fake emails about a negative review on Booking.com and inviting victims to follow a link that appears to lead to the booking site but actually opens a deceptive CAPTCHA verification page, leading to downloading of the malware.
Researchers use jailbreak to build functional malware via DeepSeek
Tenable researchers have demonstrated how generative AI could be used to develop malware, such as keyloggers and ransomware, using the DeepSeek R1 tool. The researchers
