Vendor

Logitech

2 briefs RSS

TCLBanker Banking Trojan Self-Spreads via WhatsApp and Outlook

TCLBanker is a banking trojan targeting 59 financial platforms, spreading via trojanized Logitech AI Prompt Builder installers and worm modules for WhatsApp and Outlook, enabling remote control and data theft.

AI Prompt Builder +3 banking-trojan malware worm self-spreading brazil logitech

2r 8t May 8, 2026

medium advisory

Suspicious Execution via Microsoft Office Add-Ins

3 rules 3 TTPs

This rule detects suspicious execution of Microsoft Office applications launching Office Add-Ins from unusual paths or with atypical parent processes, potentially indicating an attempt to gain initial access via a malicious phishing campaign.

Microsoft Office +5 office-addins phishing initial-access

3r 3t Jan 3, 2024