#cryptocti — Public Fediverse posts

Phishing-Driven Banking Malware Campaign Targeting Windows and Android Devices

Active malware campaigns targeting Windows and Android users, which use Grandoreiro banking malware and the BTMOB Android RAT in order to steal financial and personal data. Victims are targeted through phishing emails and fake apps that trick them into installing malicious files or granting device access.

Pulse ID: 6a187c4e9fe60a946730ffb9
Pulse Link: https://otx.alienvault.com/pulse/6a187c4e9fe60a946730ffb9
Pulse Author: cryptocti
Created: 2026-05-28 17:33:02

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #Bank #CyberSecurity #Email #InfoSec #Malware #OTX #OpenThreatExchange #Phishing #RAT #Windows #bot #cryptocti

Phishing-Driven Banking Malware Campaign Targeting Windows and Android Devices

Active malware campaigns targeting Windows and Android users, which use Grandoreiro banking malware and the BTMOB Android RAT in order to steal financial and personal data. Victims are targeted through phishing emails and fake apps that trick them into installing malicious files or granting device access.

Pulse ID: 6a187cbd9fe60a946730ffba
Pulse Link: https://otx.alienvault.com/pulse/6a187cbd9fe60a946730ffba
Pulse Author: cryptocti
Created: 2026-05-28 17:34:53

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #Bank #CyberSecurity #Email #InfoSec #Malware #OTX #OpenThreatExchange #Phishing #RAT #Windows #bot #cryptocti

Phishing-Driven Banking Malware Campaign Targeting Windows and Android Devices

Active malware campaigns targeting Windows and Android users, which use Grandoreiro banking malware and the BTMOB Android RAT in order to steal financial and personal data. Victims are targeted through phishing emails and fake apps that trick them into installing malicious files or granting device access.

Pulse ID: 6a187cbd6c6d406caeef06a2
Pulse Link: https://otx.alienvault.com/pulse/6a187cbd6c6d406caeef06a2
Pulse Author: cryptocti
Created: 2026-05-28 17:34:53

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #Bank #CyberSecurity #Email #InfoSec #Malware #OTX #OpenThreatExchange #Phishing #RAT #Windows #bot #cryptocti

Phishing-Driven Banking Malware Campaign Targeting Windows and Android Devices

Active malware campaigns targeting Windows and Android users, which use Grandoreiro banking malware and the BTMOB Android RAT in order to steal financial and personal data. Victims are targeted through phishing emails and fake apps that trick them into installing malicious files or granting device access.

Pulse ID: 6a187cbe8cdd31d7f83c8063
Pulse Link: https://otx.alienvault.com/pulse/6a187cbe8cdd31d7f83c8063
Pulse Author: cryptocti
Created: 2026-05-28 17:34:54

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #Bank #CyberSecurity #Email #InfoSec #Malware #OTX #OpenThreatExchange #Phishing #RAT #Windows #bot #cryptocti

Phishing-Driven Banking Malware Campaign Targeting Windows and Android Devices

Active malware campaigns targeting Windows and Android users, which use Grandoreiro banking malware and the BTMOB Android RAT in order to steal financial and personal data. Victims are targeted through phishing emails and fake apps that trick them into installing malicious files or granting device access.

Pulse ID: 6a187cd2d4985ecd688b1c12
Pulse Link: https://otx.alienvault.com/pulse/6a187cd2d4985ecd688b1c12
Pulse Author: cryptocti
Created: 2026-05-28 17:35:14

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #Bank #CyberSecurity #Email #InfoSec #Malware #OTX #OpenThreatExchange #Phishing #RAT #Windows #bot #cryptocti

Phishing-Driven Banking Malware Campaign Targeting Windows and Android Devices

Active malware campaigns targeting Windows and Android users, which use Grandoreiro banking malware and the BTMOB Android RAT in order to steal financial and personal data. Victims are targeted through phishing emails and fake apps that trick them into installing malicious files or granting device access.

Pulse ID: 6a187d0757e29bb3897eac46
Pulse Link: https://otx.alienvault.com/pulse/6a187d0757e29bb3897eac46
Pulse Author: cryptocti
Created: 2026-05-28 17:36:07

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #Bank #CyberSecurity #Email #InfoSec #Malware #OTX #OpenThreatExchange #Phishing #RAT #Windows #bot #cryptocti

Credential Stealer EKZ Delivered via FortiClient EMS Exploitation

Attackers exploited CVE-2026-35616 in FortiClient EMS. Threat actors changes EMS settings and pushed a malicious VPN script to endpoints. The script downloaded EKZ Infostealer, disguised as a Fortinet patch. The malware steals browser passwords, cookies, and autofill data.

Pulse ID: 6a1879e13827c581e8b73eb4
Pulse Link: https://otx.alienvault.com/pulse/6a1879e13827c581e8b73eb4
Pulse Author: cryptocti
Created: 2026-05-28 17:22:41

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Browser #Cookies #CyberSecurity #Endpoint #InfoSec #InfoStealer #Malware #OTX #OpenThreatExchange #Password #Passwords #VPN #Word #bot #cryptocti

Credential Stealer EKZ Delivered via FortiClient EMS Exploitation

Attackers exploited CVE-2026-35616 in FortiClient EMS. Threat actors changes EMS settings and pushed a malicious VPN script to endpoints. The script downloaded EKZ Infostealer, disguised as a Fortinet patch. The malware steals browser passwords, cookies, and autofill data.

Pulse ID: 6a1879e15c8f2d2d2cf72b60
Pulse Link: https://otx.alienvault.com/pulse/6a1879e15c8f2d2d2cf72b60
Pulse Author: cryptocti
Created: 2026-05-28 17:22:41

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Browser #Cookies #CyberSecurity #Endpoint #InfoSec #InfoStealer #Malware #OTX #OpenThreatExchange #Password #Passwords #VPN #Word #bot #cryptocti

Credential Stealer EKZ Delivered via FortiClient EMS Exploitation

Attackers exploited CVE-2026-35616 in FortiClient EMS. Threat actors changes EMS settings and pushed a malicious VPN script to endpoints. The script downloaded EKZ Infostealer, disguised as a Fortinet patch. The malware steals browser passwords, cookies, and autofill data.

Pulse ID: 6a1879e2d85be08873d89445
Pulse Link: https://otx.alienvault.com/pulse/6a1879e2d85be08873d89445
Pulse Author: cryptocti
Created: 2026-05-28 17:22:42

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Browser #Cookies #CyberSecurity #Endpoint #InfoSec #InfoStealer #Malware #OTX #OpenThreatExchange #Password #Passwords #VPN #Word #bot #cryptocti

Credential Stealer EKZ Delivered via FortiClient EMS Exploitation

Attackers exploited CVE-2026-35616 in FortiClient EMS. Threat actors changes EMS settings and pushed a malicious VPN script to endpoints. The script downloaded EKZ Infostealer, disguised as a Fortinet patch. The malware steals browser passwords, cookies, and autofill data.

Pulse ID: 6a187a5035303b62f8e49196
Pulse Link: https://otx.alienvault.com/pulse/6a187a5035303b62f8e49196
Pulse Author: cryptocti
Created: 2026-05-28 17:24:32

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Browser #Cookies #CyberSecurity #Endpoint #InfoSec #InfoStealer #Malware #OTX #OpenThreatExchange #Password #Passwords #VPN #Word #bot #cryptocti

Credential Stealer EKZ Delivered via FortiClient EMS Exploitation

Attackers exploited CVE-2026-35616 in FortiClient EMS. Threat actors changes EMS settings and pushed a malicious VPN script to endpoints. The script downloaded EKZ Infostealer, disguised as a Fortinet patch. The malware steals browser passwords, cookies, and autofill data.

Pulse ID: 6a187acb35f351993fe5e76b
Pulse Link: https://otx.alienvault.com/pulse/6a187acb35f351993fe5e76b
Pulse Author: cryptocti
Created: 2026-05-28 17:26:35

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Browser #Cookies #CyberSecurity #Endpoint #InfoSec #InfoStealer #Malware #OTX #OpenThreatExchange #Password #Passwords #VPN #Word #bot #cryptocti

Credential Stealer EKZ Delivered via FortiClient EMS Exploitation

Attackers exploited CVE-2026-35616 in FortiClient EMS. Threat actors changes EMS settings and pushed a malicious VPN script to endpoints.

Pulse ID: 6a1829948288ede0693126fb
Pulse Link: https://otx.alienvault.com/pulse/6a1829948288ede0693126fb
Pulse Author: cryptocti
Created: 2026-05-28 11:40:04

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Endpoint #InfoSec #OTX #OpenThreatExchange #VPN #bot #cryptocti

MiniUpdate RAT Espionage Campaign Using Azure-Hosted C2 Domains

An Iran-linked campaign used MiniUpdate RAT and MiniJunk V2 malware to
target technology professionals using fake recruitment and software lures.

Pulse ID: 6a16441bbe11e6982080d84c
Pulse Link: https://otx.alienvault.com/pulse/6a16441bbe11e6982080d84c
Pulse Author: cryptocti
Created: 2026-05-27 01:08:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Azure #CyberSecurity #Espionage #InfoSec #Iran #Malware #OTX #OpenThreatExchange #RAT #bot #cryptocti

MiniUpdate RAT Espionage Campaign Using Azure-Hosted C2 Domains

An Iran-linked campaign used MiniUpdate RAT and MiniJunk V2 malware to
target technology professionals using fake recruitment and software lures.

Pulse ID: 6a16441bbe11e6982080d84c
Pulse Link: https://otx.alienvault.com/pulse/6a16441bbe11e6982080d84c
Pulse Author: cryptocti
Created: 2026-05-27 01:08:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Azure #CyberSecurity #Espionage #InfoSec #Iran #Malware #OTX #OpenThreatExchange #RAT #bot #cryptocti

MiniUpdate RAT Espionage Campaign Using Azure-Hosted C2 Domains

An Iran-linked campaign used MiniUpdate RAT and MiniJunk V2 malware to
target technology professionals using fake recruitment and software lures.

Pulse ID: 6a16441bbe11e6982080d84c
Pulse Link: https://otx.alienvault.com/pulse/6a16441bbe11e6982080d84c
Pulse Author: cryptocti
Created: 2026-05-27 01:08:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Azure #CyberSecurity #Espionage #InfoSec #Iran #Malware #OTX #OpenThreatExchange #RAT #bot #cryptocti

MiniUpdate RAT Espionage Campaign Using Azure-Hosted C2 Domains

An Iran-linked campaign used MiniUpdate RAT and MiniJunk V2 malware to
target technology professionals using fake recruitment and software lures.

Pulse ID: 6a16441bbe11e6982080d84c
Pulse Link: https://otx.alienvault.com/pulse/6a16441bbe11e6982080d84c
Pulse Author: cryptocti
Created: 2026-05-27 01:08:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Azure #CyberSecurity #Espionage #InfoSec #Iran #Malware #OTX #OpenThreatExchange #RAT #bot #cryptocti

MiniUpdate RAT Espionage Campaign Using Azure-Hosted C2 Domains

An Iran-linked campaign used MiniUpdate RAT and MiniJunk V2 malware to
target technology professionals using fake recruitment and software lures.

Pulse ID: 6a16441bbe11e6982080d84c
Pulse Link: https://otx.alienvault.com/pulse/6a16441bbe11e6982080d84c
Pulse Author: cryptocti
Created: 2026-05-27 01:08:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Azure #CyberSecurity #Espionage #InfoSec #Iran #Malware #OTX #OpenThreatExchange #RAT #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a164033c76e927d4afb9278
Pulse Link: https://otx.alienvault.com/pulse/6a164033c76e927d4afb9278
Pulse Author: cryptocti
Created: 2026-05-27 00:52:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a164033c76e927d4afb9278
Pulse Link: https://otx.alienvault.com/pulse/6a164033c76e927d4afb9278
Pulse Author: cryptocti
Created: 2026-05-27 00:52:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a164033c76e927d4afb9278
Pulse Link: https://otx.alienvault.com/pulse/6a164033c76e927d4afb9278
Pulse Author: cryptocti
Created: 2026-05-27 00:52:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a164033c76e927d4afb9278
Pulse Link: https://otx.alienvault.com/pulse/6a164033c76e927d4afb9278
Pulse Author: cryptocti
Created: 2026-05-27 00:52:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a164033c76e927d4afb9278
Pulse Link: https://otx.alienvault.com/pulse/6a164033c76e927d4afb9278
Pulse Author: cryptocti
Created: 2026-05-27 00:52:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a15820b3e17a040b5f904e1
Pulse Link: https://otx.alienvault.com/pulse/6a15820b3e17a040b5f904e1
Pulse Author: cryptocti
Created: 2026-05-26 11:20:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a15820b3e17a040b5f904e1
Pulse Link: https://otx.alienvault.com/pulse/6a15820b3e17a040b5f904e1
Pulse Author: cryptocti
Created: 2026-05-26 11:20:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a15820b3e17a040b5f904e1
Pulse Link: https://otx.alienvault.com/pulse/6a15820b3e17a040b5f904e1
Pulse Author: cryptocti
Created: 2026-05-26 11:20:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a15820b3e17a040b5f904e1
Pulse Link: https://otx.alienvault.com/pulse/6a15820b3e17a040b5f904e1
Pulse Author: cryptocti
Created: 2026-05-26 11:20:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Critical Vulnerability in KnowledgeDeliver LMS Has Been Patched

A zero-day (CVE-2026-5426) in KnowledgeDeliver LMS is being actively exploited due to reused ASP.NET machine keys.

Pulse ID: 6a15820b3e17a040b5f904e1
Pulse Link: https://otx.alienvault.com/pulse/6a15820b3e17a040b5f904e1
Pulse Author: cryptocti
Created: 2026-05-26 11:20:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #Edge #InfoSec #Mac #NET #OTX #OpenThreatExchange #Vulnerability #ZeroDay #bot #cryptocti

Megalodon Malware Targets Developers With CI/CD Workflows On GitHub

An automated supply chain attack called Megalodon was launched to target developers on GItHub infecting more than 5,000 repositories by injecting CI/DC workflows into GitHub actions using unused accounts, aiming to steal session token, backend secrets, configuration files and build environments.

Pulse ID: 6a12fa57fe7d7e7f29dc57bb
Pulse Link: https://otx.alienvault.com/pulse/6a12fa57fe7d7e7f29dc57bb
Pulse Author: cryptocti
Created: 2026-05-24 13:17:11

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #GitHub #InfoSec #Malware #OTX #OpenThreatExchange #RAT #SupplyChain #bot #developers #cryptocti

Megalodon Malware Targets Developers With CI/CD Workflows On GitHub

An automated supply chain attack called Megalodon was launched to target developers on GItHub infecting more than 5,000 repositories by injecting CI/DC workflows into GitHub actions using unused accounts, aiming to steal session token, backend secrets, configuration files and build environments.

Pulse ID: 6a12fa57fe7d7e7f29dc57bb
Pulse Link: https://otx.alienvault.com/pulse/6a12fa57fe7d7e7f29dc57bb
Pulse Author: cryptocti
Created: 2026-05-24 13:17:11

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #GitHub #InfoSec #Malware #OTX #OpenThreatExchange #RAT #SupplyChain #bot #developers #cryptocti

Megalodon Malware Targets Developers With CI/CD Workflows On GitHub

An automated supply chain attack called Megalodon was launched to target developers on GItHub infecting more than 5,000 repositories by injecting CI/DC workflows into GitHub actions using unused accounts, aiming to steal session token, backend secrets, configuration files and build environments.

Pulse ID: 6a12fa57fe7d7e7f29dc57bb
Pulse Link: https://otx.alienvault.com/pulse/6a12fa57fe7d7e7f29dc57bb
Pulse Author: cryptocti
Created: 2026-05-24 13:17:11

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #GitHub #InfoSec #Malware #OTX #OpenThreatExchange #RAT #SupplyChain #bot #developers #cryptocti

Megalodon Malware Targets Developers With CI/CD Workflows On GitHub

An automated supply chain attack called Megalodon was launched to target developers on GItHub infecting more than 5,000 repositories by injecting CI/DC workflows into GitHub actions using unused accounts, aiming to steal session token, backend secrets, configuration files and build environments.

Pulse ID: 6a12fa57fe7d7e7f29dc57bb
Pulse Link: https://otx.alienvault.com/pulse/6a12fa57fe7d7e7f29dc57bb
Pulse Author: cryptocti
Created: 2026-05-24 13:17:11

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #GitHub #InfoSec #Malware #OTX #OpenThreatExchange #RAT #SupplyChain #bot #developers #cryptocti

Megalodon Malware Targets Developers With CI/CD Workflows On GitHub

An automated supply chain attack called Megalodon was launched to target developers on GItHub infecting more than 5,000 repositories by injecting CI/DC workflows into GitHub actions using unused accounts, aiming to steal session token, backend secrets, configuration files and build environments.

Pulse ID: 6a12fa57fe7d7e7f29dc57bb
Pulse Link: https://otx.alienvault.com/pulse/6a12fa57fe7d7e7f29dc57bb
Pulse Author: cryptocti
Created: 2026-05-24 13:17:11

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #GitHub #InfoSec #Malware #OTX #OpenThreatExchange #RAT #SupplyChain #bot #developers #cryptocti

Android Malware Forces Hidden Premium Service Subscriptions

Pulse ID: 6a12dc1c3f49b8b35effd5b8
Pulse Link: https://otx.alienvault.com/pulse/6a12dc1c3f49b8b35effd5b8
Pulse Author: cryptocti
Created: 2026-05-24 11:08:12

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

Android Malware Forces Hidden Premium Service Subscriptions

Pulse ID: 6a12dc1c3f49b8b35effd5b8
Pulse Link: https://otx.alienvault.com/pulse/6a12dc1c3f49b8b35effd5b8
Pulse Author: cryptocti
Created: 2026-05-24 11:08:12

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

Android Malware Forces Hidden Premium Service Subscriptions

Pulse ID: 6a12dc1c3f49b8b35effd5b8
Pulse Link: https://otx.alienvault.com/pulse/6a12dc1c3f49b8b35effd5b8
Pulse Author: cryptocti
Created: 2026-05-24 11:08:12

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

Android Malware Forces Hidden Premium Service Subscriptions

Pulse ID: 6a12dc1c3f49b8b35effd5b8
Pulse Link: https://otx.alienvault.com/pulse/6a12dc1c3f49b8b35effd5b8
Pulse Author: cryptocti
Created: 2026-05-24 11:08:12

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

Android Malware Forces Hidden Premium Service Subscriptions

Pulse ID: 6a12dc1c3f49b8b35effd5b8
Pulse Link: https://otx.alienvault.com/pulse/6a12dc1c3f49b8b35effd5b8
Pulse Author: cryptocti
Created: 2026-05-24 11:08:12

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #CyberSecurity #InfoSec #Malware #OTX #OpenThreatExchange #RCE #bot #cryptocti

SEO Poisoning Infostealer Campaign via Gemini CLI and Claude Code

Pulse ID: 6a123407891a0247298ffc64
Pulse Link: https://otx.alienvault.com/pulse/6a123407891a0247298ffc64
Pulse Author: cryptocti
Created: 2026-05-23 23:11:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #InfoStealer #OTX #OpenThreatExchange #SEOPoisoning #bot #cryptocti

SEO Poisoning Infostealer Campaign via Gemini CLI and Claude Code

Pulse ID: 6a123407891a0247298ffc64
Pulse Link: https://otx.alienvault.com/pulse/6a123407891a0247298ffc64
Pulse Author: cryptocti
Created: 2026-05-23 23:11:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #InfoStealer #OTX #OpenThreatExchange #SEOPoisoning #bot #cryptocti

SEO Poisoning Infostealer Campaign via Gemini CLI and Claude Code

Pulse ID: 6a123407891a0247298ffc64
Pulse Link: https://otx.alienvault.com/pulse/6a123407891a0247298ffc64
Pulse Author: cryptocti
Created: 2026-05-23 23:11:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #InfoStealer #OTX #OpenThreatExchange #SEOPoisoning #bot #cryptocti

SEO Poisoning Infostealer Campaign via Gemini CLI and Claude Code

Pulse ID: 6a123407891a0247298ffc64
Pulse Link: https://otx.alienvault.com/pulse/6a123407891a0247298ffc64
Pulse Author: cryptocti
Created: 2026-05-23 23:11:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #InfoStealer #OTX #OpenThreatExchange #SEOPoisoning #bot #cryptocti

SEO Poisoning Infostealer Campaign via Gemini CLI and Claude Code

Pulse ID: 6a123407891a0247298ffc64
Pulse Link: https://otx.alienvault.com/pulse/6a123407891a0247298ffc64
Pulse Author: cryptocti
Created: 2026-05-23 23:11:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #InfoStealer #OTX #OpenThreatExchange #SEOPoisoning #bot #cryptocti

Laravel-Lang Supply Chain Attack Enables Remote Code Execution

Pulse ID: 6a123448b3721c8f8883af50
Pulse Link: https://otx.alienvault.com/pulse/6a123448b3721c8f8883af50
Pulse Author: cryptocti
Created: 2026-05-23 23:12:08

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #RemoteCodeExecution #SupplyChain #bot #cryptocti

Laravel-Lang Supply Chain Attack Enables Remote Code Execution

Pulse ID: 6a123448b3721c8f8883af50
Pulse Link: https://otx.alienvault.com/pulse/6a123448b3721c8f8883af50
Pulse Author: cryptocti
Created: 2026-05-23 23:12:08

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #RemoteCodeExecution #SupplyChain #bot #cryptocti

Laravel-Lang Supply Chain Attack Enables Remote Code Execution

Pulse ID: 6a123448b3721c8f8883af50
Pulse Link: https://otx.alienvault.com/pulse/6a123448b3721c8f8883af50
Pulse Author: cryptocti
Created: 2026-05-23 23:12:08

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #RemoteCodeExecution #SupplyChain #bot #cryptocti

Laravel-Lang Supply Chain Attack Enables Remote Code Execution

Pulse ID: 6a123448b3721c8f8883af50
Pulse Link: https://otx.alienvault.com/pulse/6a123448b3721c8f8883af50
Pulse Author: cryptocti
Created: 2026-05-23 23:12:08

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #RemoteCodeExecution #SupplyChain #bot #cryptocti

Laravel-Lang Supply Chain Attack Enables Remote Code Execution

Pulse ID: 6a123448b3721c8f8883af50
Pulse Link: https://otx.alienvault.com/pulse/6a123448b3721c8f8883af50
Pulse Author: cryptocti
Created: 2026-05-23 23:12:08

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #RemoteCodeExecution #SupplyChain #bot #cryptocti

Enterprise Network Compromise via Exploitation of F5 Big IP Devices

Pulse ID: 6a11f707a0439431e41a3cca
Pulse Link: https://otx.alienvault.com/pulse/6a11f707a0439431e41a3cca
Pulse Author: cryptocti
Created: 2026-05-23 18:50:47

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #bot #cryptocti

Enterprise Network Compromise via Exploitation of F5 Big IP Devices

Pulse ID: 6a11f707a0439431e41a3cca
Pulse Link: https://otx.alienvault.com/pulse/6a11f707a0439431e41a3cca
Pulse Author: cryptocti
Created: 2026-05-23 18:50:47

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #bot #cryptocti

Enterprise Network Compromise via Exploitation of F5 Big IP Devices

Pulse ID: 6a11f707a0439431e41a3cca
Pulse Link: https://otx.alienvault.com/pulse/6a11f707a0439431e41a3cca
Pulse Author: cryptocti
Created: 2026-05-23 18:50:47

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #bot #cryptocti