Human rights organization Amnesty International recently made headlines with a report they released outlining the use of Pegasus malware against activists and journalists. This report, and public trust in the organization, are now being exploited by attackers to distribute Sarwent malware.

A new Trojan by the name of BloodyStealer is targeting Steam, GOG, Epic Games, Origin, Bethesda, and other gaming-related accounts.

New Cooperative, an Iowa-based provider of agriculture services and owner of the SOILMAP platform, was recently hit by BlackMatter ransomware. About 1 TB of data was stolen in the attack, and the cybercriminals responsible are demanding about $6 million in ransom.

GSS, one of Europe's largest customer care and call center providers, has been hit by Conti ransomware. Iconic wedding dress designer Vera Wang Group also fell victim to the group in a similar attack.

Google recently released an emergency security patch for the Chrome web browser, fixing a zero-day vulnerability that is being actively exploited in the wild.

A new fileless malware campaign known as Water Basilisk is using a new variant of HCrypt to install a number of remote access Trojans (RATs) onto victims' computers.

A large-scale phishing-as-a-service operation, dubbed BulletProofLink, has been discovered to be providing attackers with everything they need for social engineering attacks — from phishing kits and templates, to hosting services and other useful tools.