Christmas Cookies on the Table. Session Cookies on the Dark Web. As Christmas Eve draws near, we’re all picturing warm, gooey cookies piled high on the kitchen table, ready for Santa (or that office party). But here’s the twist: while you’re nibbling on chocolate chips, cybercriminals are munching on your session Weiterlesen…
In our latest Threat Intelligence report, baseVISION investigates a malware campaign that spreads through malicious game mods to compromise gamers and potentially corporate environments. The campaign leverages social engineering and the Stealit credential stealer to harvest sensitive data, showing how attackers exploit trusted communities and human behavior rather than technical Weiterlesen…
In our latest TI report, baseVISION uncovers a phishing campaign that abuses TikTok’s open redirect feature to hijack Microsoft credentials. The attackers use multi-stage redirect chains, IP-based cloaking, and Adversary-in-the-Middle (AiTM) phishing pages to bypass MFA and steal session tokens. We break down the full attack chain, indicators of compromise, Weiterlesen…
In a world where cyber threats evolve faster than ever, one thing remains constant: attackers are still betting on human error. Our latest report, “Click, Paste and Compromise: When User Trust Becomes Your Greatest Vulnerability,” dives deep into the rise of ClickFix—a social engineering technique that tricks users into executing malicious commands through Weiterlesen…
Since 2024, multiple zero-day vulnerabilities in the Windows Common Log File System (CLFS) driver have been exploited by ransomware groups like RansomEXX and Play (Balloonfly). These Elevation of Privilege (EoP) flaws enabled SYSTEM-level access and were used in real-world attacks before patches were released. Microsoft issued fixes across several Patch Weiterlesen…
With the announcement from the USA President regarding a new cryptocurrency reserve, so-called Crypto Strategic Reserve, we anticipate an increase in speculative trading and more exposure to scams from people trying to profit from the current market. Some of the most popular topics in cryptocurrency are related to crypto trading Weiterlesen…
Cybercriminals are increasingly targeting macOS with infostealers, exploiting the growing adoption of Mac devices in corporate environments. Our latest TI-Report uncovers: A 101% increase in macOS infostealer activity in 2024 How Atomic (AMOS) and Poseidon are spreading in Switzerland The tactics behind phishing, malicious downloads, and malvertising Key mitigations to Weiterlesen…
Cybercriminals are increasingly using Microsoft Teams to bypass security controls and target employees. Our first TI-Report uncovers: How groups like Black Basta use Teams as an attack vector The tactics behind phishing, vishing, and email bombing Key mitigations to protect your organization Get the full insights and Indicators of Compromise Weiterlesen…