Blog & News

A significant increase in NFC relay malware has been observed in Eastern Europe, with researchers identifying over 760 malicious Android apps exploiting Near-Field Communication technology to steal credit card information.…

Russia-backed COLDRIVER has launched a new cyber-espionage campaign targeting NATO entities using NOROBOT, a downloader that employs fake CAPTCHA lures to deploy backdoors like MAYBEROBOT for intelligence gathering. For more…

A new supply chain attack, GlassWorm malware, has been targeting developers on OpenVSX and Microsoft VS Code marketplaces, with over 35,800 installations. For more information, please check here https://www.koi.ai/blog/glassworm-first-self-propagating-worm-using-invisible-code-hits-openvsx-marketplace

DarkCloud Stealer is targeting financial firms via phishing emails with malicious RAR attachments, using MSBuild.exe injection and a PowerShell-downloaded JPG to decrypt an embedded .NET file and steal credentials from…

The US Federal Bureau of Investigation (FBI) has issued an alert warning that criminals are impersonating government officials through fake voice and text messages. The alert states that the campaign…

The computer systems and website of Spanish water supplier Aigües de Mataró experienced a cyberattack; the company, which oversees both drinking water and sewage systems for the town of Mataró,…

Canon has published a security advisory disclosing a critical vulnerability in drivers for "production printers, office/small office multifunction printers and laser printers." CVE-2025-1268, CVSS score 9.4, would allow an attacker…

Researchers at Infoblox have published a report describing a Phishing-as-a-service (PhaaS) kit observed in use since 2020, that has grown in complexity and among other capabilities now abuses domain name…