VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

September 5, 2025
No Comments

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

Cybersecurity researchers have flagged a new malware campaign that has leveraged Scalable Vector Graphics (SVG) files as part of phishing attacks impersonating the Colombian judicial system.
The SVG files, according to VirusTotal, are distributed via email and designed to execute an embedded JavaScript payload, which then decodes and injects a Base64-encoded HTML phishing page masquerading as a

Leave a Reply Cancel reply

Copilots to Agents: The Acceleration of AI-Driven Decision Making September 4, 2025
GenAI is advancing at an unprecedented pace. Where Copilots once offered support and recommendations, we now witness the emergence of agentic AI. These systems can autonomously make decisions, complete intricate tasks, and interact seamlessly across platforms with limited human supervision. This transformation represents a major milestone for enterprise technology, presenting both vast opportunities and new […]
Janne Saarela
From PowerShell to Payload: Darktrace Discovers Novel Cryptojacking Attack September 4, 2025
In July 2025, Darktrace researchers detected an attempted cryptojacking incident on a retail and e-commerce network. A desktop device initiated an HTTP connection to a rare endpoint, 45.141.87[.]195 over port 8000. Embedded in the request was a PowerShell script, infect.ps1. The script’s behavior flagged an immediate anomaly: a new PowerShell user agent making an unusual […]
Kirsten Doyle
European Court Upholds EU-U.S. Data Privacy Framework, Clearing Path for Transatlantic Data Flows September 4, 2025
The European General Court has backed the EU-U.S. Data Privacy Framework (DPF). The ruling clears legal uncertainty for organisations moving data across the Atlantic. It upholds the European Commission’s adequacy decision, and confirms that the framework protects personal data while still enabling cross-border digital activity. ITI and its members welcomed the decision. It provides clarity […]
Kirsten Doyle
Why It’s Time to Ditch the VPN and Embrace RPAM for Secure Remote Work September 3, 2025
As much of the workforce takes advantage of late-summer holidays, employees, contractors, and third-party vendors continue to log in remotely from holiday homes, airports, or hotels, far from the traditional corporate environment. This surge in remote access inevitably heightens security risks. For IT and security teams already managing a sprawling attack surface, reduced visibility and […]
James Edwards
WhatsApp Reveals Zero-Day Exploited in Targeted Apple Attacks September 3, 2025
WhatsApp has disclosed a zero-day flaw that was used in precision attacks against Apple users. The bug, tracked as CVE-2025-55177 with a CVSS score of 8.0, involved incomplete authorization of linked device sync messages. In practice, that meant an attacker could trick a device into processing content from arbitrary URLs. The issue affected WhatsApp for […]
Kirsten Doyle
Cyber Attack Severely Disrupts Jaguar Land Rover Production September 3, 2025
Jaguar Land Rover (JLR) has fallen victim to a cyber-attack. In a statement JLR said: “JLR has been impacted by a cyber incident. We took immediate action to mitigate its impact by proactively shutting down our systems. We are now working at pace to restart our global applications in a controlled manner.” The company, owned […]
Kirsten Doyle
European Commission President’s Plane GPS Signal Disrupted Amid Suspected Russian Jamming September 3, 2025
The European Union said Monday that Russia was suspected of jamming the GPS system of a plane carrying European Commission President Ursula von der Leyen to Bulgaria on Sunday. “We can indeed confirm that there was GPS jamming, but the plane landed safely in Bulgaria,” a European Commission spokesperson told reporters. “We have received information […]
Kirsten Doyle
Zscaler Confirms Limited Data Exposure Linked to Third-Party App September 2, 2025
Zscaler has disclosed a security incident tied to Salesloft Drift, a marketing automation service used by many Salesforce customers. The company has confirmed that attackers stole OAuth tokens connected to Drift, which opened a door to certain Salesforce data. Zscaler was among the organizations affected. Zsclaler stressed that its own products, services, and core infrastructure […]
Kirsten Doyle
Silver Fox Exploits Signed Drivers to Deliver ValleyRAT September 2, 2025
Check Point Research has uncovered a new campaign tied to the Silver Fox APT group. The operation relies on signed but vulnerable Windows drivers to slip through security defenses and deliver ValleyRAT, a modular backdoor. Two drivers are key to this operation, both built on the Zemana Anti-Malware SDK. One is old and already flagged […]
Kirsten Doyle
Meta Ads Spread Advanced Crypto-Stealing Malware September 1, 2025
A new malvertising wave is moving from desktops to phones. The platform: Meta’s ad network. The target: Android users. The prize: cryptocurrency. Bitdefender Labs says attackers have shifted gears after months of hitting Windows. Now the lure is a fake TradingView Premium app, pushed through Facebook ads. The download doesn’t deliver charting software. It drops […]
Kirsten Doyle

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

GhostRedirector Hacks 65 Windows Servers Using Rungan Backdoor and Gamshen IIS Module

Automation Is Redefining Pentest Delivery

Leave a Reply Cancel reply

[email protected]

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

VirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing Pages

Share :

Leave a Reply Cancel reply