Phishing

Why a Falling Cost-Per-Phish Should Worry You | IRONSCALES

Why a Falling Cost-Per-Phish Should Worry You | IRONSCALES

| | email security, Phishing
The new Osterman report we commissioned put a clean number on something I've been arguing about for two years. The average cost to handle a single phishing email dropped 12% since 2022, ...
Blog
MSG Breach: Knicks Take the NBA Championship, ShinyHunters Takes the Data 

MSG Breach: Knicks Take the NBA Championship, ShinyHunters Takes the Data 

| | access, credentials, Data Security, databases, NY Knicks, Phishing, shinyHuntersm data
Both the New York Knicks and ShinyHunters continued their winning streak last week but only one stole data at Madison Square Garden.  ...
Security Boulevard

Belarus-Linked GhostWriter Expands Phishing Campaign to Target Gmail Accounts of Polish Public Figures

| | CERT Polska, Cyber threats and incidents, ghostwriter, Phishing
What happened CERT Polska, Poland’s national computer emergency response team, warned on Friday that GhostWriter, a Belarus-linked hacking group also tracked as UNC1151 and Storm-0257, has expanded its phishing operations to target ...
CISO Whisperer
Figure 1: Open Directory hosting EtherRAT MSI 

Inside a malicious infrastructure delivering EtherRAT, phishing pages, and malicious software 

| | EtherRAT, Malware, Phishing, Threat Intel, Threat Intelligence
We found EtherRAT malware being distributed by a website with a strange homepage. Following the trail, we discovered a vast network of malicious infrastructures, distributing malware, malicious documents, remote desktop software, and phishing pages.  ...
Malwarebytes
phishing, digital fraud, emails, perimeter, attacks, phishing, simulation, AI cybersecurity

Google Sues Chinese Threat Group Using Gemini AI in Phishing Scams

| | China threat groups, Phishing, threat actors
Google filed a lawsuit against a Chinese threat group called Outsider Enterprise, which is accused of using the Gemini AI platform to develop multiple phishing-as-a-service kits that other attackers can use to ...
Security Boulevard
The World Cup Email Your Employees Will Actually Fall For | IRONSCALES

The World Cup Email Your Employees Will Actually Fall For | IRONSCALES

| | 2026, email security, Phishing, Phishing Simulation Testing
Your employees are not going to fall for a fake ticket site. Most of them, anyway. The fake FIFA storefronts and crypto-only "hospitality packages" flooding social media right now are aimed at ...
Blog
Infostealers are becoming the go-to phishing payload

Infostealers are becoming the go-to phishing payload

| | infostealers, PHaaS, Phishing, Scams, Threat Intel
Cybercriminals prefer infostealers to traditional phishing techniques because they reduce friction, scale well, and are widely available ...
Malwarebytes
Kali365 phishing kit bypasses MFA and steals Microsoft logins

Kali365 phishing kit bypasses MFA and steals Microsoft logins

| | Kali365, Microsoft, Phishing, SBN News, Scams
The FBI has warned that attackers are using a new phishing kit to gain long-term access to Microsoft Outlook, Teams, and OneDrive accounts ...
Malwarebytes
email screenshot

Fake LinkedIn emails abuse Adobe to track victims

| | adobe target, linkedin, Phishing, Privacy, Scams, Threat Intel
Phishers are stealing LinkedIn credentials while abusing Adobe Target to track victims and redirect them to real LinkedIn pages ...
Malwarebytes
Barracuda Networks Report Identifies CypherLoc Scareware Kit

Barracuda Networks Report Identifies CypherLoc Scareware Kit

| | Barracuda Networks, browser hijacking, Cybersecurity, CypherLoc, malware evasion, Phishing, scareware, social engineering, tech support scam
Merium Khalid, director of offensive security for the SOC at Barracuda Networks, noted that while the attack itself is a straightforward social engineering attempt to steal credentials over the phone, the tactics ...
Security Boulevard
Load more