Coyote Malware Abuses Microsoft’s UI Automation in Wild to Exfiltrate Login Credentials

Threat Score:
43
Cybersecurity News
2 days ago

Overview

A groundbreaking cybersecurity threat has emerged as researchers document the first confirmed case of malware exploiting Microsoft’s User Interface Automation (UIA) framework in active attacks. The Coyote banking trojan, initially discovered in February 2024, has evolved to incorporate this sophisticated technique, marking a significant escalation in malware capabilities and attack methodologies. The malware specifically targets […]...

Related Articles

5 articles
1

Microsoft 365 Admin Center Outage Blocks Access for Admins Worldwide

Cybersecurity News 5 hours ago

Microsoft is currently facing an outage that affects the Microsoft 365 Admin Center, preventing administrators from accessing essential management tools. The issue, which emerged prominently on July 24, 2025, has persisted into the following day, marking the second such incident this week and raising concerns service reliability. As businesses rely heavily on Microsoft 365 […]

Score
79
Read more
2
Microsoft SharePoint Hackers Switch Gears to Spread Ransomware

Microsoft SharePoint Hackers Switch Gears to Spread Ransomware

TechRepublic Security 3 hours ago

Recent attacks targeting Microsoft SharePoint have escalated, with threat actors now deploying ransomware on vulnerable systems, according to Microsoft. This surge in malicious activity follows the release of multiple SharePoint security patches in July. Anupdate published to Microsoft’s blogreads, in part: “Expanded analysis and threat intelligence from our continued monitoring of exploitation activity by Storm-2603 leading to the deployment of Warlock ransomware.” Detailing the attack At least

Score
77
Read more
3
The Ηоmоgraph Illusion: Not Everything Is As It Seems

The Ηоmоgraph Illusion: Not Everything Is As It Seems

Palo Alto Unit 42 4 hours ago

Threat Research Center Threat Research The Ηоmоgraph Illusion: Not Everything Is As It Seems By:Gal Guzman Gal Guzman Published:July 25, 2025 Categories:Business Email CompromiseMalwareThreat Research Malware Threat Research Tags:DocusignGenAIGooglePhishing Docusign GenAI Google Phishing Executive Summary Since the creation of the internet, email attacks have been the predominant attack vector for spreading malware and gaining initial access to systems and endpoints. One example of an effective

Score
76
Read more
4
Global ransomware attacks drop 43% but threats evolve quickly

Global ransomware attacks drop 43% but threats evolve quickly

Security Brief UK 6 hours ago

Global ransomware attacks drop 43% but threats evolve quickly Ransomware attacks worldwide declined by 43% in the second quarter, yet threats continue to adapt and evolve according to a new report from NCC Group. The report found a notable decrease in global ransomware activity, with incidents dropping by six percent month-on-month in June, amounting to 371 cases. Over the quarter, attacks fell by 1180 cases compared with the quarter. Experts attribute the reduction to seasonal slowdowns, includ

Score
76
Read more
5

Cyber Espionage Campaign Hits Russian Aerospace Sector Using EAGLET Backdoor

The Hacker News 12 hours ago

Russian aerospace and defense industries have become the target of a cyber espionage campaign that delivers a backdoor called EAGLET to facilitate data exfiltration. The activity, dubbed OperationCargoTalon, has been assigned to a threat cluster tracked asUNG0901(short for Unknown Group 901). "The campaign is aimed at targeting employees of Voronezh Aircraft Production Association (VASO), one of the major aircraft production entities in Russia via using товарно-транспортная накладная (TTN) docum

Score
76
Read more