Recent investigations have revealed a surge in sophisticated cybercrime activities targeting Russian and Western users. The Cybersecurity and Infrastructure Security Agency (CISA) and the U.S. Department of Government Efficiency (DOGE) reported that software engineer login credentials have appeared in multiple leaks linked to info-stealing malware over recent years. Russian authorities, including the Moscow police and the Ministry of Internal Affairs (MVD), have warned about scammers hacking personal accounts on the Russian government services portal "Gosuslugi" by impersonating mobile operators under the pretext of contract extensions. Additionally, fake work chat groups are being used to deceive Russian citizens. Experts from F6 (formerly F.A.A.C.T.) identified a new fraud scheme targeting Russian-speaking users of messaging apps and social networks, especially those using circumvention tools or located outside Russia. Criminals also steal bank card data by pretending to offer secure online payment on fake protected websites. In the realm of cryptocurrency, a phishing network named FreeDrain has been exposed, which silently drains crypto wallets from hobbyists. A known Russian cybercrime group has deployed a new malware suite capable of stealing user accounts and credentials, posing a threat to Western organizations. Furthermore, security researchers have flagged the Noodlophile malware, distributed alongside fake AI tools, which harvests browser credentials and cryptocurrency wallet information.