Breaking News – Cyber Threats (last 6h)
Generated: 2026-07-03 08:00 PDT
- ARToken PhaaS exposes EvilTokens' Microsoft 365 phishing toolkit
BleepingComputer • 2026-07-03 07:12 • www.bleepingcomputer.com
A new phishing-as-a-service (PhaaS) platform dubbed “ARToken” appears to operate as an affiliate of the EvilTokens phishing platform, giving researchers a glimpse into an extensive toolkit designed to compromise Microsoft 365. […]
https://www.bleepingcomputer.com/news/security/artoken-phaas-exposes-eviltokens-microsoft-365-phishing-toolkit/ - Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer
The Hacker News • 2026-07-03 06:36 • thehackernews.com
A previously undocumented threat actor known as Armored Likho has been attributed to cyber attacks targeting government agencies and the electric power sector across Russia, Brazil, and Kazakhstan.“Armored Likho blends financially motivated campaigns targeting private individuals with targeted cyber espionage aimed at organizations,” Kaspersky said in a technical analysis published today. “
https://thehackernews.com/2026/07/armored-likho-targets-government.html - Flock Cameras Can Surveil Cars Without License Plates
Schneier on Security • 2026-07-03 04:15 • www.schneier.comThis is from a 2024 company presentation:
Officers can also tap into data showing a car’s decals, bumper stickers, back and top racks—along with temporary and unique state tags.
Flock calls it a “Vehicle Fingerprint” and it’s touted as a way for law enforcement officials to get more information “even when you don’t have full plate information,” the company’s presentation shows.
The company gives police officers th…
https://www.schneier.com/blog/archives/2026/07/flock-cameras-can-surveil-cars-without-license-plates.html - European Parliament Member Investigating Spyware Was Hacked With Pegasus
The Hacker News • 2026-07-03 04:05 • thehackernews.com
A new report from the Citizen Lab has revealed that former Member of the European Parliament Stelios Kouloglou had his mobile device repeatedly hacked with the notorious Pegasus spyware while serving on a committee that was tasked with investigating the abuse of such commercial surveillance tools in the bloc.“Through forensic analysis of his device, we found that the attackers could have had
https://thehackernews.com/2026/07/european-parliament-member.html - Armored Likho digging a snake pit: inside the covert BusySnake Stealer campaign
Securelist • 2026-07-03 03:00 • securelist.com
An inside look at the active Armored Likho APT campaign. The attackers are using spear-phishing, AI-generated loaders, and a new Python-based tool, BusySnake Stealer, to target organizations in Russia, Kazakhstan, and Brazil.
https://securelist.com/tr/armored-likho-apt-with-busysnake-stealer/120292/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
