Hackers are abusing Google’s DoubleClick domain to deliver a .NET-based RAT through targeted phishing emails. The attack chain uses dynamically personalized landing pages and process hollowing to evade detection, making it harder for security tools to flag malicious traffic.
NFCShare Android malware has expanded from targeting a single German bank to hitting financial institutions across Italy and Spain, using fake banking app updates hosted on GitHub to steal credit card data via NFC.
A breach at Nelnet Servicing exposed names, addresses, and Social Security numbers for 2.5 million student loan borrowers — and the timing couldn’t be worse with loan forgiveness scams already circulating.
Meta detected a new NSO Group spear-phishing campaign targeting WhatsApp users, took down the infrastructure, and filed a contempt order — the spyware vendor was already under a permanent injunction.
Cybercriminals have registered nearly 19,000 FIFA-themed domains since January, targeting World Cup fans with phishing, ticket scams, travel fraud, and malware. The FBI and Meta have both issued warnings ahead of the 2026 tournament.
Over 2.5 million student loan borrowers had their personal data — including Social Security numbers — exposed through a breach at Nelnet Servicing. The incident comes at the worst possible timing, coinciding with federal loan forgiveness announcements.
A breach at Nelnet Servicing exposed Social Security numbers and personal data for 2.5 million student loan borrowers. With loan forgiveness in the news, phishing attacks using this data are a serious and ongoing threat.
