Phishing

Hackers Use Fake Meta Emails to Steal Ad Account CredentialsHackers Use Fake Meta Emails to Steal Ad Account Credentials

Hackers Use Fake Meta Emails to Steal Ad Account Credentials

A recent phishing campaign uncovered by the Cofense Phishing Defense Center (PDC) has been exploiting fake Meta emails to deceive…

2 weeks ago
Zero-Hour Phishing Attacks Exploiting Browser Vulnerabilities Surge by 130%Zero-Hour Phishing Attacks Exploiting Browser Vulnerabilities Surge by 130%

Zero-Hour Phishing Attacks Exploiting Browser Vulnerabilities Surge by 130%

Menlo Security, a leader in Secure Enterprise Browsers, has released its annual State of Browser Security Report, revealing a sharp…

2 weeks ago
Fake Coinbase Migration Messages Target Users to Steal Wallet CredentialsFake Coinbase Migration Messages Target Users to Steal Wallet Credentials

Fake Coinbase Migration Messages Target Users to Steal Wallet Credentials

A sophisticated phishing campaign is currently targeting cryptocurrency investors with fraudulent emails claiming to be from Coinbase. The scam attempts…

2 weeks ago
Hackers Exploit Hard Disk Image Files to Deploy VenomRATHackers Exploit Hard Disk Image Files to Deploy VenomRAT

Hackers Exploit Hard Disk Image Files to Deploy VenomRAT

In a recent cybersecurity threat, hackers have been using virtual hard disk image files (.vhd) to distribute the VenomRAT malware,…

2 weeks ago
Squid Werewolf Mimics Recruiters to Target Job Seekers and Steal Personal DataSquid Werewolf Mimics Recruiters to Target Job Seekers and Steal Personal Data

Squid Werewolf Mimics Recruiters to Target Job Seekers and Steal Personal Data

In a sophisticated phishing campaign uncovered by the BI.ZONE Threat Intelligence team, the Squid Werewolf group, also known as APT37,…

2 weeks ago
Sophisticated Phishing Attack Leverages Microsoft 365 Infrastructure to Target UsersSophisticated Phishing Attack Leverages Microsoft 365 Infrastructure to Target Users

Sophisticated Phishing Attack Leverages Microsoft 365 Infrastructure to Target Users

A highly sophisticated phishing campaign has been uncovered exploiting Microsoft 365's trusted infrastructure to facilitate credential harvesting and account takeover…

2 weeks ago
AWS SNS Exploited for Data Exfiltration and Phishing AttacksAWS SNS Exploited for Data Exfiltration and Phishing Attacks

AWS SNS Exploited for Data Exfiltration and Phishing Attacks

Amazon Web Services' Simple Notification Service (AWS SNS) is a versatile cloud-based pub/sub service that facilitates communication between applications and…

3 weeks ago
New Microsoft 365 Attack Leverages OAuth Redirection for Credential TheftNew Microsoft 365 Attack Leverages OAuth Redirection for Credential Theft

New Microsoft 365 Attack Leverages OAuth Redirection for Credential Theft

Threat researchers at Proofpoint are currently tracking two sophisticated and highly targeted cyber-attack campaigns that are utilizing OAuth redirection mechanisms…

3 weeks ago
Hackers Exploit Microsoft Copilot for Advanced Phishing AttacksHackers Exploit Microsoft Copilot for Advanced Phishing Attacks

Hackers Exploit Microsoft Copilot for Advanced Phishing Attacks

Hackers have been targeting Microsoft Copilot, a newly launched Generative AI assistant, to carry out sophisticated phishing attacks. This campaign…

3 weeks ago
Hackers Exploit Advanced MFA Bypass Techniques to Compromise User AccountsHackers Exploit Advanced MFA Bypass Techniques to Compromise User Accounts

Hackers Exploit Advanced MFA Bypass Techniques to Compromise User Accounts

In recent years, phishing has remained the most prevalent form of cyberattack, with approximately 1.2% of global email traffic being…

3 weeks ago