phishing

Allianz Life Data Breach: A Case Study in Third-Party Social Engineering

Data Breach

Allianz Life Data Breach: A Case Study in Third-Party Social Engineering

Allianz Life Insurance Company of North America has confirmed that a July 2025 cyberattack compromised the personal...

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

Threat Intelligence

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

A new phishing and malware distribution toolkit called MatrixPDF enables attackers to convert ordinary PDF files into...

Passkeys: A Technical Analysis of Security, Implementation, and Operational Impact

Blue-Team

Passkeys: A Technical Analysis of Security, Implementation, and Operational Impact

With 88% of data breaches involving stolen credentials, the inherent weaknesses of password-based authentication are a primary...

Why Attackers Are Moving Beyond Email: The Rise of Multi-Channel Phishing

Threat Intelligence

Why Attackers Are Moving Beyond Email: The Rise of Multi-Channel Phishing

The threat landscape for phishing attacks has fundamentally shifted. While email security gateways have been a primary...

Microsoft 365: A Target-Rich Environment Demanding a Multi-Layered Defense

Blue-Team

Microsoft 365: A Target-Rich Environment Demanding a Multi-Layered Defense

Microsoft 365’s position as the dominant enterprise productivity suite has made it the single biggest risk in...

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation

Threat Intelligence

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation

A coordinated legal and technical operation by Microsoft and Cloudflare has successfully disrupted RaccoonO365, one of the...

FileFix Attack Campaign: Steganography and File Explorer Abuse for StealC Delivery

Threat Intelligence

FileFix Attack Campaign: Steganography and File Explorer Abuse for StealC Delivery

A newly identified social engineering campaign, dubbed “FileFix,” is actively impersonating Meta account suspension warnings to distribute...

Securing the Browser: The New Enterprise Perimeter and Attack Surface

Blue-Team

Securing the Browser: The New Enterprise Perimeter and Attack Surface

The modern web browser has become the primary interface for enterprise work, hosting sensitive data, credentials, and...

Google Confirms Breach of Law Enforcement Portal in Sophisticated Attack Campaign

Data Breach

Google Confirms Breach of Law Enforcement Portal in Sophisticated Attack Campaign

Google has confirmed that threat actors successfully created a fraudulent account within its Law Enforcement Request System...

Analysis of the VoidProxy Phishing-as-a-Service Platform and its MFA Bypass Capabilities

Threat Intelligence

Analysis of the VoidProxy Phishing-as-a-Service Platform and its MFA Bypass Capabilities

A newly identified phishing-as-a-service (PhaaS) platform named VoidProxy has emerged as a significant threat to organizations using...

Unfair Social Media Bans: A Technical Examination of Account Suspension and Appeal Processes

News

Unfair Social Media Bans: A Technical Examination of Account Suspension and Appeal Processes

Recent reports from users claiming unfair bans on major social media platforms like Facebook and Instagram have...

Microsoft Teams Enhances Security with Malicious Link Protection in Private Chats

Blue-Team

Microsoft Teams Enhances Security with Malicious Link Protection in Private Chats

Microsoft is expanding its security capabilities within Microsoft Teams by introducing malicious URL protection for private chats,...

Analysis of the NPM Supply Chain Attack: A Near-Miss with Systemic Implications

Threat Intelligence

Analysis of the NPM Supply Chain Attack: A Near-Miss with Systemic Implications

The NPM ecosystem recently experienced its largest supply-chain compromise to date, an event that impacted an estimated...

The $400 Million Constant: How Human-Centric Attacks Persist and Evolve

Data Breach

The $400 Million Constant: How Human-Centric Attacks Persist and Evolve

The financial impact of cybercrime has maintained a persistent benchmark for over two decades, with the figure...

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

Threat Intelligence

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

The U.S. Department of the Treasury has initiated a significant, multi-phase sanctions campaign against the individuals and...

Microsoft Defender Anti-Spam Service Bug Disrupts Exchange Online and Teams URLs

Blue-Team

Microsoft Defender Anti-Spam Service Bug Disrupts Exchange Online and Teams URLs

Microsoft is currently addressing a significant service issue where its anti-spam filtering technology within Defender for Office...

Exploitation of iCloud Calendar for High-Credibility Phishing Campaigns

Blue-Team

Exploitation of iCloud Calendar for High-Credibility Phishing Campaigns

A sophisticated phishing campaign is leveraging Apple’s iCloud Calendar service to distribute fraudulent purchase notifications directly from...

SVG Files Weaponized in Sophisticated Colombian Malware Campaign Evading Detection

Threat Intelligence

SVG Files Weaponized in Sophisticated Colombian Malware Campaign Evading Detection

A newly discovered phishing campaign uses malicious SVG files to impersonate Colombia’s judicial system and deliver malware,...

Microsoft’s Free M365 Offer: A Technical Analysis for Security Professionals

News

Microsoft’s Free M365 Offer: A Technical Analysis for Security Professionals

Microsoft has announced a significant expansion of its education offerings, providing a free 12-month subscription to Microsoft...

Browser-Based Attacks: The 2025 Threat Landscape and Defensive Strategies

Blue-Team

Browser-Based Attacks: The 2025 Threat Landscape and Defensive Strategies

The browser has become the primary attack surface for modern cyber operations, shifting the frontline of defense...

Posts pagination

1 2 3 4 … 7 Next

phishing

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

Passkeys: A Technical Analysis of Security, Implementation, and Operational Impact

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation

Securing the Browser: The New Enterprise Perimeter and Attack Surface

Analysis of the VoidProxy Phishing-as-a-Service Platform and its MFA Bypass Capabilities

Unfair Social Media Bans: A Technical Examination of Account Suspension and Appeal Processes

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

You may have missed

Adobe Analytics Data Leak: Architectural Failure Exposes Cross-Tenant Data

Snapchat’s Shift to Paid Storage: A Technical Analysis of Cloud Service Monetization

Google’s Developer Registration Policy Threatens F-Droid’s Existence

Google Drive for Desktop Deploys AI-Powered Ransomware Detection and Recovery