Cybersecurity researchers at Cisco Talos have uncovered a sophisticated intrusion campaign active since at least January 2026. Unknown threat actors are deploying a new remote access tool, CloudZ RAT, alongside a previously undocumented plugin, Pheno. The primary objective of this campaign is to silently harvest victims’ credentials and intercept multi-factor authentication codes, specifically one-time passwords […]
The post New CloudZ RAT Campaign Targets Mobile Notifications via Phone Link Abuse appeared first on Cyber Security News.