Microsoft

Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...
SecurityWeek

Threat Actor Targeting VPN Users in New Credential Theft Campaign

Storm-2561 is relying on SEO poisoning to distribute fake VPN clients that install trojans and steal users’ credentials.
The Hacker News

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Storm-2561 spreads fake VPN installers via SEO poisoning and GitHub downloads, stealing enterprise VPN credentials with Hyrax malware.

Fake enterprise VPN sites used to steal company credentials

A threat actor tracked as Storm-2561 is distributing fake enterprise VPN clients from Ivanti, Cisco, and Fortinet to steal VPN credentials from unsuspecting users.
Windows Central

Azure VPN Client for macOS is now in public preview

The Azure VPN Client just entered public preview on macOS. It will support RADIUS authentication for OpenVPN protocol, among other items. With the client, users will be able to use conditional access, ...
XDA Developers on MSN

I use ESP32 as a VPN gateway for my whole network — here's how

Lightweight functions without Linux.
Neowin

Proton launches redesigned VPN client for Windows with new profiles feature

Following the release of the Proton Drive app for Windows on ARM, Proton is launching some fresh updates for its VPN client, "making its applications even more easy to use and customizable, to get ...
Network World

The best client-side VPN choice

My company has mandated that all remote users connect to the corporate network using a VPN connection. My concern is how best to do it. For users working from home, do we use a software VPN client or ...