TECHNOLOGYglobal

Threat Actor Targeting VPN Users in New Credential Theft Campaign

Single source

Updated 3 hours ago

First seen March 17, 2026 05:14:55

Stay on top of this story

Follow the names and topics behind it.

Add this story's key topics to your watchlist so LyscoNews can highlight related developments and future matches.

Create free account

Create a free account to sync your watchlist, saved stories, and alerts across devices.

Quick Summary

Storm-2561 is distributing fake VPN clients through SEO poisoning, deploying trojans, and stealing login information. The post Threat Actor Targeting VPN Users in New Credential Theft Campaign appeared first on SecurityWeek.

Perspective lens

Deeper Analysis

All coverage links (1)

Security WeekRegional / Local

Threat Actor Targeting VPN Users in New Credential Theft Campaign

19 hours ago