Search the internal chats of Blackbasta here: https://bastachats.armada-ops.com

Fake KeePass Password Manager Leads to ESXi Ransomware Attack

Cybercriminals have been distributing trojanized versions of the KeePass password manager for at least eight months, aiming to infiltrate enterprise networks. These malicious versions install Cobalt Strike beacons, steal credentials, and ultimately deploy ransomware on compromised systems. The attackers target VMware ESXi servers, exploiting their vulnerabilities to spread ransomware rapidly across virtual machines. This campaign underscores the risks of downloading software from unverified sources and the importance of vigilant cybersecurity practices

Google Introduces Advanced Protection Mode for Its Most At-Risk Android Users

With the release of Android 16, Google has unveiled an Advanced Protection mode aimed at users most vulnerable to cyber threats, such as journalists and public officials. This mode includes features like USB protection, automatic device locking during suspicious activity, and the disabling of connections to insecure networks. Additionally, it offers intrusion logging and AI-powered scam detection to bolster user security. While some features will roll out later this year, users can activate the core protections through their device settings under Google -- Personal & Device Safety --Advanced Protection.

More reading:

https://www.bleepingcomputer.com/news...

https://bastachats.armada-ops.com/

https://arstechnica.com/security/2025...