Malware Monday: a blog about malware and other cybersecurity threats
-
Japanese Scam Page Targets Elderly in Ironic Twist
Week 1 of the AfterChallenge By Christopher Mohr There is a scam circulating around Japan in the form of official-looking websites that themselves warn about scams, in other words, a scam page promoting anti-scam practices. The attackers behind this campaign have cleverly found a way to use their targets’ vigilance as an attack surface. Phishing
-
Analysis of Phishing Attempt Targeting Venezuelan Bank Customers
by Christopher Mohr Day 98 of 100 in the 100 Days of Cyber Challenge If you have been following along on my LinkedIn posts and here on Malware Monday you’ve seen that I have looked at several phishing campaigns recently, some targeting accounts I have like my email and sites like Fiverr. This led me
-
When Browser Extensions Turn Malicious
Day 92 of 100 in the 100 Days of Cyber Challenge by Christopher Mohr This is yet another belated issue of Malware Monday released on Terrible Tuesday. Lots of things occupying my time lately. Hopefully I’ll get this blog back on schedule soon. I’m hearing more reports of browser extensions being used to distribute malware
-
Job Scam Part III: The Sequel
A new scam campaign arrived in my Fiverr inbox. Let’s break it down. By Christopher Mohr Day 84 of 100 in the 100 Days of Cyber Challenge I am in the process of starting a database consulting business and to get more opportunities, I have created Fiverr and Upwork accounts offering services. While I have
-
Another Job Scam
This time on Fiverr. I share the message to show what’s going on by Christopher Mohr Day 78 of 100 in the 100 Days of Cyber Challenge On Monday (2 February 2026) I received a message in my Fiverr account inbox, which is shown below. All account identifiers and names in the message have been
-
The Social Engineering to Malware Cycle
Starting with a LinkedIn Reply and Going All the Way to Malware Distribution Day 71 of 100 in the 100 Days of Cyber Challenge. In Day 68 of the 100 Days of Cyber Challenge on LinkedIn, I shared a video covering what appeared to be an attempted social engineering attack through a job recruiting scam.
-
What I Learned So Far from Running a Honeypot
by Christopher Mohr Day 64 of 100 in the 100 Days of Cyber Challenge The ‘Tuesday’ edition of Malware Monday is brought to you by the Indiana Hoosiers and my job search. No apologies for the former. It was a historical day in the making, but today’s MM edition comes a day later than expected.
-
Mobile Banking Trojans Posing Threat to Android Users
Day 56 of 100 in the 100 Days of Cyber Challenge by Christopher Mohr In March 2025, Kaspersky announced at Mobile World Congress in Barcelona that the number of “trojan banker attacks” had increased 196% in 2024 over the previous year, with 1.24 million Android devices compromised. Shortly after, the company also reported that the
-
Infostealers: 2025’s Most Underestimated Threat
Day 49 of 100 in the 100 Days of Cyber Challenge Hudson Rock calls them, “a silent epidemic” that is growing in volume and sophistication. KELA referred to them as “The Quiet Precursor to Larger Attacks”. These organizations are talking about infostealers, malware that runs in the background and is often used to set up
-
Qilin RaaS Group Claims Most Victims for 2025
Day 42 of 100 in the 100 Days of Cyber Challenge by Christopher Mohr According to Ransomware.Live, a tracking site providing real-time ransomware statistics, Ransomware-as-a-service (RaaS) group Qilin has claimed the most victims in 2025 with 1,047 as of 28 December 2025, when this article was written. This was way ahead of the second place