Microsoft has issued a warning about an active cryptojacking campaign that uses AI chatbot interactions to impersonate legitimate systems and direct users to malicious download sites. Once victims click the links, threat actors establish persistent remote access to compromised computers, potentially enabling further activities such as data theft or ransomware deployment. The campaign, detailed in a report from Microsoft Defender Experts and the Microsoft Defender Security Research Team, repres
cybersecuritynews (3)
Hewlett Packard Enterprise (HPE) has released its inaugural cyber threat report, titled 'In the Wild', revealing a significant shift in the operational strategies of modern cyber adversaries. Released on 17 March 2026, the research indicates that cybercrime groups are increasingly mirroring legitimate enterprise business models to maximize financial gain. The report, based on an analysis of 1,186 active threat campaigns observed globally throughout 2025, suggests that the threat landscape has
A phishing malware campaign, known as Shadow Vector, has been reported, targeting users in Colombia through malicious SVG files disguised as urgent court notifications. The campaign uses the MITRE ATT&CK technique known as SVG smuggling, where scalable vector graphics are used to embed or link malicious content. It begins with spear-phishing emails containing SVG attachments, which, when rendered in a browser, redirect victims to download payloads from public platforms like Bitbucket, Dropbox,
