Threat Actors Exploit Blender Files to Deploy StealC V2 Infostealer
Researchers have tracked a long running campaign in which attackers hide StealC V2 infostealer inside weaponized Blender project files shared on popular 3D asset marketplaces. When victims open these .blend files with auto run Python scripts enabled, embedded code silently launches a multistage infection chain that targets 3D artists and game developers who routinely import community models.
New ClickFix wave infects users with hidden malware in images and fake Windows
Malwarebytes details a new phase of the ClickFix campaign that combines malicious images and a full screen fake Windows Update window to convince users to run a command that fetches and executes malware. The operation uses obfuscated loaders and social engineering to install information stealing payloads while appearing to be a routine operating system update.
Major US Banks Impacted by SitusAMC Hack
SecurityWeek describes how a cyberattack on real estate finance vendor SitusAMC allowed intruders to access corporate data such as accounting records, legal agreements, and some customer related information for major US banks. The company says the incident, which did not involve file encrypting ransomware, has been contained while law enforcement and security experts continue to assess which services and institutions were affected and to what extent.
FBI: Cybercriminals stole $262M by impersonating bank support teams
BleepingComputer reports that the FBI has warned of a surge in account takeover fraud where criminals impersonate bank support staff and other financial institution representatives, stealing more than 262 million dollars since January 2025. Attackers contact victims through calls, texts, or emails to capture login details and one time codes, then move money into criminal controlled accounts, often tied to cryptocurrency wallets, and lock legitimate owners out of their accounts.
Hackers Strike Ivy League Schools Already Under Political Pressure
The article describes how several Ivy League universities, including Harvard, Dartmouth, Columbia, the University of Pennsylvania, and Princeton, have reported cyber incidents in recent months, some tied to the broader Oracle E-Business Suite hacking campaign attributed to criminal groups like Cl0p. It notes that attackers accessed large amounts of personal and financial information belonging to students, alumni, and donors at a time when these institutions are already facing intense political scrutiny, highlighting how universities’ data and reputations make them attractive targets.
