Fortinet says the Ousaban trojan uses geofenced phishing PDFs and steganography to steal banking credentials from users in Spain and Portugal.
Fortinet says the May 2026 Ousaban campaign uses PDF lures, geofencing, and steganography to target Windows banking users.
Securonix says PureLogs infection starts with a fake PDF JavaScript file and uses PowerShell, fileless .NET loading, and LOLBins.
A 1787 letter linked to two U.S. presidents was purchased for $2.759 million, the highest bid during the “Icons of History” auction.