The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.

The latest email threats: real Microsoft login phishing, device code scams with a kill switch, split-click attacks, and the ...

Researchers uncover DCloud infrastructure used to power more than 230,000 second-level scam domains and real-world fraud operations.