Cybersecurity researchers from Lookout Threat Lab have identified a sophisticated Android surveillance tool, dubbed “KoSpy”, believed to be the work of North Korean hackers. Active since March 2022, KoSpy is associated with the North Korean threat group APT37 (ScarCruft), disguised as legitimate utility applications. Once installed, it can gather a vast range of sensitive user data, focusing on Korean and English-speaking targets. KoSpy symbolizes an advanced evolution in North Korean cyber espionage capabilities.
Microsoft Warns of ClickFix Phishing Campaign Targeting Hospitality Sector via Fake Booking[.]com Emails
Microsoft has reported an ongoing phishing campaign, known as Storm-1865, that targets the hospitality sector by impersonating Booking.com. The campaign uses a social engineering technique
