Lampion Stealer Evolves: Silent Credential Theft via ClickFix Attacks
Researchers have discovered a new wave of attacks using the Lampion banking trojan, a malware active since 2019 and now targeting users of Portuguese banks more aggressively. The attackers have [...]
WhatsApp Rolls Out Passkey Encryption for Backups
WhatsApp has rolled out passkey-encrypted backups, a major upgrade that makes protecting chat history easier and more secure. Instead of relying on passwords or lengthy encryption keys, WhatsApp now allows [...]
Patch Now: CISA Releases Detections for Zero-Day WSUS Exploit
On October 29, 2025, CISA released new guidance to help organizations detect and reduce attacks exploiting CVE-2025-59287, a critical flaw in Microsoft’s WSUS. The bug allows attackers to run code [...]
Phishing Attack Hides Malicious Emails with Invisible Characters
Cybercriminals are using a new phishing technique that hides invisible characters in email subject lines to bypass automated security filters. The attack uses MIME encoding and Unicode soft hyphens to [...]
Herodotus mimics humans to bypass biometrics
A sophisticated Android banking trojan called Herodotus has appeared, using new techniques to evade detection. All about the malware-Herodotus Found alongside Hook and Octo during routine monitoring, the samples more [...]
FHN 
