A new wave of cyber threats has emerged, with multiple threat groups deploying sophisticated malware and phishing tactics. The Russian group FIN7 is utilizing a new lightweight Python backdoor named Anubis, which allows attackers to gain full remote access to Windows machines without leaving detectable files. Anubis operates entirely in memory, evading most defenses and capable of stealing sensitive information such as passwords and screenshots. In another development, the Romanian-linked Outlaw group is hijacking Linux servers through brute-force attacks on SSH credentials to deploy cryptojacking malware. This group uses a self-propagating malware known as BLITZ and installs SHELLBOT for remote control and data theft. Additionally, Microsoft has issued a warning regarding a new wave of tax-themed phishing attacks targeting over 2,300 U.S. companies. These attacks utilize PDFs, QR codes, and fake DocuSign pages to steal passwords and deliver malware, including Remcos. The targeted sectors primarily include IT, consulting, and engineering firms.