Improper input validation vulnerability has a CVSS score of 9.8 out of 10
Cybercriminals employed three fake cryptocurrency-related apps to trick users into downloading the malware on their systems
The group has a history of abusing the Know Your Customer (KYC) regulations to target financial technology firms
Hackers are sending spam mails that purport to come from big defence contractors to trap potential targets