Security News

Users receive at least one advanced phishing link every week
2025-01-06 04:30

Phishing remains one of the most significant cyber threats impacting organizations worldwide, according to SlashNext. Credential phishing is raising Credential theft attacks surged dramatically in...

PLAYFULGHOST Delivered via Phishing and SEO Poisoning in Trojanized VPN Apps
2025-01-04 07:52

Cybersecurity researchers have flagged a new malware called PLAYFULGHOST that comes with a wide range of information-gathering features like keylogging, screen capture, audio capture, remote...

iOS devices more exposed to phishing than Android
2024-12-26 04:00

The mobile threat landscape continues to grow at an alarming rate as cybercrime groups shift their tactics and target mobile devices in the early stages of their attacks, according to a recent...

Rockstar2FA Collapse Fuels Expansion of FlowerStorm Phishing-as-a-Service
2024-12-23 11:21

An interruption to the phishing-as-a-service (PhaaS) toolkit called Rockstar 2FA has led to a rapid uptick in activity from another nascent offering named FlowerStorm. "It appears that the...

New FlowerStorm Microsoft phishing service fills void left by Rockstar2FA
2024-12-21 15:16

A new Microsoft 365 phishing-as-a-service platform called "FlowerStorm" is growing in popularity, filling the void left behind by the sudden shutdown of the Rockstar2FA cybercrime service. [...]

Ongoing phishing attack abuses Google Calendar to bypass spam filters
2024-12-18 23:16

An ongoing phishing scam is abusing Google Calendar invites and Google Drawings pages to steal credentials while bypassing spam filters. [...]

HubSpot phishing targets 20,000 Microsoft Azure accounts
2024-12-18 18:41

A phishing campaign targeting automotive, chemical, and industrial manufacturing companies in Germany and the UK is abusing HubSpot to steal Microsoft Azure account credentials. [...]

European companies hit with effective DocuSign-themed phishing emails
2024-12-18 11:54

A threat actor looking to take over the Microsoft Azure cloud infrastructure of European companies has successfully compromised accounts of multiple victims in different firms, according to Palo...

Spain busts voice phishing ring for defrauding 10,000 bank customers
2024-12-12 16:44

The Spanish police, working with colleagues in Peru, conducted a simultaneous crackdown on a large-scale voice phishing (vishing) scam ring in the two countries, arresting 83 individuals. [...]

Inside the incident: Uncovering an advanced phishing attack
2024-12-10 15:01

Recently, Varonis investigated a phishing campaign in which a malicious email enabled a threat actor to access the organization. This blog post will reveal the tactics used to avoid detection and...