phishing

ShinyHunters Escalate Salesforce Campaign with Dedicated Data Leak Site

Threat Intelligence

ShinyHunters Escalate Salesforce Campaign with Dedicated Data Leak Site

The cyber extortion group ShinyHunters has intensified its ongoing campaign targeting major enterprises by launching a dedicated...

Microsoft Outlook Blocks Inline SVG Images to Counter Phishing Attacks

Blue-Team

Microsoft Outlook Blocks Inline SVG Images to Counter Phishing Attacks

Microsoft has initiated a significant security update for its Outlook email clients, specifically targeting the use of...

Android Spyware Campaigns Impersonate Signal and ToTok Messengers

Threat Intelligence

Android Spyware Campaigns Impersonate Signal and ToTok Messengers

Cybersecurity researchers have identified two sophisticated Android spyware campaigns, named ProSpy and ToSpy, that are impersonating the...

Allianz Life Data Breach: A Case Study in Third-Party Social Engineering

Data Breach

Allianz Life Data Breach: A Case Study in Third-Party Social Engineering

Allianz Life Insurance Company of North America has confirmed that a July 2025 cyberattack compromised the personal...

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

Threat Intelligence

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

A new phishing and malware distribution toolkit called MatrixPDF enables attackers to convert ordinary PDF files into...

Passkeys: A Technical Analysis of Security, Implementation, and Operational Impact

Blue-Team

Passkeys: A Technical Analysis of Security, Implementation, and Operational Impact

With 88% of data breaches involving stolen credentials, the inherent weaknesses of password-based authentication are a primary...

Why Attackers Are Moving Beyond Email: The Rise of Multi-Channel Phishing

Threat Intelligence

Why Attackers Are Moving Beyond Email: The Rise of Multi-Channel Phishing

The threat landscape for phishing attacks has fundamentally shifted. While email security gateways have been a primary...

Microsoft 365: A Target-Rich Environment Demanding a Multi-Layered Defense

Blue-Team

Microsoft 365: A Target-Rich Environment Demanding a Multi-Layered Defense

Microsoft 365’s position as the dominant enterprise productivity suite has made it the single biggest risk in...

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation

Threat Intelligence

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation

A coordinated legal and technical operation by Microsoft and Cloudflare has successfully disrupted RaccoonO365, one of the...

FileFix Attack Campaign: Steganography and File Explorer Abuse for StealC Delivery

Threat Intelligence

FileFix Attack Campaign: Steganography and File Explorer Abuse for StealC Delivery

A newly identified social engineering campaign, dubbed “FileFix,” is actively impersonating Meta account suspension warnings to distribute...

Securing the Browser: The New Enterprise Perimeter and Attack Surface

Blue-Team

Securing the Browser: The New Enterprise Perimeter and Attack Surface

The modern web browser has become the primary interface for enterprise work, hosting sensitive data, credentials, and...

Google Confirms Breach of Law Enforcement Portal in Sophisticated Attack Campaign

Data Breach

Google Confirms Breach of Law Enforcement Portal in Sophisticated Attack Campaign

Google has confirmed that threat actors successfully created a fraudulent account within its Law Enforcement Request System...

Analysis of the VoidProxy Phishing-as-a-Service Platform and its MFA Bypass Capabilities

Threat Intelligence

Analysis of the VoidProxy Phishing-as-a-Service Platform and its MFA Bypass Capabilities

A newly identified phishing-as-a-service (PhaaS) platform named VoidProxy has emerged as a significant threat to organizations using...

Unfair Social Media Bans: A Technical Examination of Account Suspension and Appeal Processes

News

Unfair Social Media Bans: A Technical Examination of Account Suspension and Appeal Processes

Recent reports from users claiming unfair bans on major social media platforms like Facebook and Instagram have...

Microsoft Teams Enhances Security with Malicious Link Protection in Private Chats

Blue-Team

Microsoft Teams Enhances Security with Malicious Link Protection in Private Chats

Microsoft is expanding its security capabilities within Microsoft Teams by introducing malicious URL protection for private chats,...

Analysis of the NPM Supply Chain Attack: A Near-Miss with Systemic Implications

Threat Intelligence

Analysis of the NPM Supply Chain Attack: A Near-Miss with Systemic Implications

The NPM ecosystem recently experienced its largest supply-chain compromise to date, an event that impacted an estimated...

The $400 Million Constant: How Human-Centric Attacks Persist and Evolve

Data Breach

The $400 Million Constant: How Human-Centric Attacks Persist and Evolve

The financial impact of cybercrime has maintained a persistent benchmark for over two decades, with the figure...

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

Threat Intelligence

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

The U.S. Department of the Treasury has initiated a significant, multi-phase sanctions campaign against the individuals and...

Microsoft Defender Anti-Spam Service Bug Disrupts Exchange Online and Teams URLs

Blue-Team

Microsoft Defender Anti-Spam Service Bug Disrupts Exchange Online and Teams URLs

Microsoft is currently addressing a significant service issue where its anti-spam filtering technology within Defender for Office...

Exploitation of iCloud Calendar for High-Credibility Phishing Campaigns

Blue-Team

Exploitation of iCloud Calendar for High-Credibility Phishing Campaigns

A sophisticated phishing campaign is leveraging Apple’s iCloud Calendar service to distribute fraudulent purchase notifications directly from...

Posts pagination

Previous 1 2 3 4 5 … 9 Next

phishing

ShinyHunters Escalate Salesforce Campaign with Dedicated Data Leak Site

Microsoft Outlook Blocks Inline SVG Images to Counter Phishing Attacks

Android Spyware Campaigns Impersonate Signal and ToTok Messengers

MatrixPDF Toolkit Transforms PDFs into Advanced Phishing and Malware Lures

Passkeys: A Technical Analysis of Security, Implementation, and Operational Impact

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing-as-a-Service Operation

Securing the Browser: The New Enterprise Perimeter and Attack Surface

Analysis of the VoidProxy Phishing-as-a-Service Platform and its MFA Bypass Capabilities

Unfair Social Media Bans: A Technical Examination of Account Suspension and Appeal Processes

U.S. Sanctions Target Infrastructure and Operators Behind Southeast Asian Cyber Scam Networks

You may have missed

Dark Web Data Exposure: Technical Analysis and Response for Security Professionals

Misinformation as a Threat Vector: Lessons from the Brown University Shooting Investigation

Google’s Gmail Address Change: A New Vector for Account Takeover and Social Engineering

The AI Investment Surge in India: A Strategic Analysis for Security Leaders