The financially motivated threat actor known asEncryptHub(aka LARVA-208 and Water Gamayun) has beenattributedto a new campaign that's targeting Web3 developers to infect them with information stealer malware.
"LARVA-208 has evolved its tactics, using fake AI platforms (e.g., Norlax AI, mimicking Teampilot) to lure victims with job offers or portfolio review requests," Swiss cybersecurity company PRODAFT said in a statement shared with The Hacker News.
While the group has ahistoryof deploying ran...
Microsoft SharePoint zero-day exploited in RCE attacks, no patch available
BleepingComputer
7 hours ago
Microsoft SharePoint zero-day exploited in RCE attacks, no patch available Lawrence Abrams July 20, 2025 11:40 AM 0 A critical zero-day vulnerability in Microsoft SharePoint, tracked as CVE-2025-53770...