Hackers are hijacking expired or deleted Discord invite links to redirect users to malicious sites that deliver remote access ...

The fact that payload delivery and data exfiltration occur via trusted cloud services such as GitHub, Bitbucket, Pastebin, ...

The new malware exploits a weakness in Discord’s invitation system to deliver an information stealer known as Skuld and the ...

If you've received an invite link to Discord but never used it to join that specific server, don't click through it weeks or ...

A new Rust‑ based info‑stealer called Myth Stealer spreads via fake gaming sites, targeting Chrome and Firefox credentials ...

It’s a cross-site scripting vulnerability present in open-source webmail platform Roundcube, and abuses a desanitization ...

As Trend Micro recently discovered, the threat actors behind this TikTok social engineering campaign are using ... installed WASP Stealer (Discord Token Grabber) malware. The malware was pushed ...

Sophos thinks a single person or group called "ischhfd83" is behind more than a hundred backdoored malware variants targeting ...

In the past, cybercriminals have used TikTok's trending "Invisible Challenge" to spread WASP Stealer malware, which can steal Discord accounts ... In the current TikTok campaign, the instructional ...

A new malware campaign using fake DocuSign verification pages to deploy ... Malware hosted on GitHub and Discord content delivery networks Despite the sophistication of the attack, the tools used are ...