EvilTokens

The New Phishing Click: How OAuth Consent Bypasses MFA

AndyC 20 May 2026

In February 2026, a phishing-as-a-service (PhaaS) platform called EvilTokens went live. Within five weeks, it had compromised more than 340...

The calm before the ransom: What you see is not all there is

AndyC 1 May 2026

Ransomware A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability Tomáš Foltýn 24 Apr 2026 • ,...

The calm before the ransom: What you see is not all there is

AndyC 1 May 2026

Ransomware A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability Tomáš Foltýn 24 Apr 2026 • ,...

GopherWhisper: A burrow full of malware

AndyC 1 May 2026

ESET Research ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions Eric Howard 23 Apr 2026...

GopherWhisper: A burrow full of malware

AndyC 1 May 2026

ESET Research ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions Eric Howard 23 Apr 2026...

New NGate variant hides in a trojanized NFC payment app

AndyC 1 May 2026

ESET Research has discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged...

New NGate variant hides in a trojanized NFC payment app

AndyC 1 May 2026

ESET Research has discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged...