phishing

Operation FanTrap: Inside the FIFA 2026 Fraud Ecosystem

cyber news, cybersecurity, darkweb, OSINT, phishing /

Operation FanTrap: Inside the FIFA 2026 Fraud Ecosystem 2026-06-18 at 17:05 By Ashish Khaitan Executive Summary  The FIFA World Cup 2026 has become more than a global sporting event. It has evolved into a large-scale cybercrime opportunity exploited by threat actors through a coordinated ecosystem of fraudulent domains, social media channels, messaging platforms, pirated streaming […]

Operation FanTrap: Inside the FIFA 2026 Fraud Ecosystem Read More »

FBI, Google Dismantle ‘Outsider Enterprise’ Phishing Service

disrupted, FBI, Featured, Google, Outsider Enterprise, phishing /

FBI, Google Dismantle ‘Outsider Enterprise’ Phishing Service 2026-06-15 at 12:31 By Ionut Arghire The platform used more than 9,000 phishing sites, stealing nearly 4 million credit cards and causing roughly $1.9 billion in losses. The post FBI, Google Dismantle ‘Outsider Enterprise’ Phishing Service appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

FBI, Google Dismantle ‘Outsider Enterprise’ Phishing Service Read More »

Cybercriminals are moving away from mass phishing campaigns

cybercrime, Encryption, News, phishing, report, survey, Zscaler /

Cybercriminals are moving away from mass phishing campaigns 2026-06-12 at 13:47 By Sinisa Markovic Phishing activity declined by roughly 20% in both 2024 and 2025, according to research from Zscaler’s ThreatLabz team. The drop followed years of growth that pushed phishing activity above 2 billion hits in 2023. “Phishing volume measured by blocked emails is

Cybercriminals are moving away from mass phishing campaigns Read More »

New Browser-in-the-Browser phishing uses fake login popups to steal Microsoft 365 credentials

cybercrime, Microsoft 365, News, Palo Alto Networks, phishing /

New Browser-in-the-Browser phishing uses fake login popups to steal Microsoft 365 credentials 2026-06-10 at 17:24 By Sinisa Markovic A new Browser-in-the-Browser (BitB) phishing campaign is targeting Microsoft 365 users with fake login popups designed to closely mimic legitimate browser authentication windows, according to Palo Alto Networks Unit 42. The attack relies on a fake browser

New Browser-in-the-Browser phishing uses fake login popups to steal Microsoft 365 credentials Read More »

MokN Raises $15 Million for Phish-Back Platform

funding, phishing /

MokN Raises $15 Million for Phish-Back Platform 2026-05-29 at 17:34 By Ionut Arghire MokN’s platform deploys realistic decoy access points to lure attackers into revealing compromised credentials, enabling organizations to respond before abuse occurs. The post MokN Raises $15 Million for Phish-Back Platform appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

MokN Raises $15 Million for Phish-Back Platform Read More »

LinkedIn-themed phishing abuses Adobe’s A/B testing platform

Don't miss, Hot stuff, LinkedIn, Malwarebytes, News, phishing /

LinkedIn-themed phishing abuses Adobe’s A/B testing platform 2026-05-29 at 14:08 By Zeljka Zorz A newly documented phishing campaign is targeting professionals with fake LinkedIn business emails and abusing a trusted service operated by Adobe. The attack from the victim’s perspective The attack starts with an email that looks, at first glance, like a routine business

LinkedIn-themed phishing abuses Adobe’s A/B testing platform Read More »

OverlayPhantom: The Android Banking Trojan Hiding in Plain Sight

Android, Credential Harvesting, cyber news, Malware, phishing, spyware, trojan /

OverlayPhantom: The Android Banking Trojan Hiding in Plain Sight 2026-05-27 at 09:24 By rohansinhacyblecom Executive Summary Cyble Research and Intelligence Labs (CRIL) has identified a novel Android banking trojan, dubbed OverlayPhantom, actively distributed in the wild via malicious URLs. The malware employs a two-stage infection chain, using a dropper application that impersonates trusted platforms, including

OverlayPhantom: The Android Banking Trojan Hiding in Plain Sight Read More »

Chinese phishing gangs grow into a force to be reckoned with

China, cybercrime, Google, News, phishing /

Chinese phishing gangs grow into a force to be reckoned with 2026-05-26 at 17:09 By Sinisa Markovic Chinese-language phishing-as-a-service (PhaaS) communities are expanding in an area historically dominated by Russian-speaking cybercriminal groups. The Google Threat Intelligence Group (GTIG) analyzed a dozen active PhaaS offerings operating in Chinese-language underground communities and found mature services, with several

Chinese phishing gangs grow into a force to be reckoned with Read More »

Microsoft 365 users targeted by new phishing threat that bypasses MFA

cybercrime, FBI, Microsoft, Microsoft 365, News, phishing /

Microsoft 365 users targeted by new phishing threat that bypasses MFA 2026-05-22 at 12:17 By Sinisa Markovic Microsoft 365 access tokens are being targeted by an emerging Phishing-as-a-Service (PhaaS) platform called Kali365, the FBI is warning. First observed in April 2026, Kali365 has been distributed through Telegram, allowing cybercriminals to obtain Microsoft 365 access tokens

Microsoft 365 users targeted by new phishing threat that bypasses MFA Read More »

Verizon DBIR: Vulnerability exploitation is the dominant initial access vector

AI, CISO, credentials, data breach, Don't miss, Hot stuff, News, phishing, Ransomware, report, social engineering, Verizon, vulnerability disclosure, vulnerability management /

Verizon DBIR: Vulnerability exploitation is the dominant initial access vector 2026-05-20 at 17:16 By Zeljka Zorz Vulnerability exploitation has overtaken stolen credentials as the most common way attackers gain initial access to target networks, according to the 2026 Verizon Data Breach Investigations Report. This is the first time credential theft has been knocked off the

Verizon DBIR: Vulnerability exploitation is the dominant initial access vector Read More »

PureLogs infostealer is stealing credentials worldwide

data theft, Don't miss, Fortinet, Hot stuff, Malware, News, phishing /

PureLogs infostealer is stealing credentials worldwide 2026-05-19 at 16:58 By Zeljka Zorz A phishing campaign is smuggling the powerful PureLogs information stealer onto targets’ Windows machines by hiding encrypted malicious payloads inside cat photos, Fortinet researchers discovered. The attack The attack starts with a phishing email containing a TXZ archive and using an invoice-themed lure

PureLogs infostealer is stealing credentials worldwide Read More »

Public Instagram posts provide raw material for AI phishing campaigns

AI, cybercrime, Instagram, News, phishing, research, social media /

Public Instagram posts provide raw material for AI phishing campaigns 2026-05-19 at 09:17 By Sinisa Markovic A handful of public Instagram posts can give attackers enough material to generate convincing phishing emails with GenAI. Research from the University of Texas at Arlington and Louisiana State University showed how public social media activity can be turned

Public Instagram posts provide raw material for AI phishing campaigns Read More »

201 arrested in INTERPOL disruption of phishing and fraud networks

arrest, cybercrime, Interpol, Malware, News, phishing /

201 arrested in INTERPOL disruption of phishing and fraud networks 2026-05-18 at 12:08 By Anamarija Pogorelec Operation Ramz, a cybercrime initiative coordinated by INTERPOL across the MENA region, focused on disrupting phishing campaigns, malware activity, and cyber scams that caused substantial financial losses across the region. The operation resulted in the arrest of 201 individuals

201 arrested in INTERPOL disruption of phishing and fraud networks Read More »

Signal responds to phishing attacks with new in-app security warnings

cybersecurity, News, phishing, Signal, social engineering /

Signal responds to phishing attacks with new in-app security warnings 2026-05-13 at 16:08 By Sinisa Markovic Signal is adding new protections for users following recent phishing and social engineering attacks. In March, the FBI and CISA issued a warning stating that Signal had become a primary target of Russian intelligence-linked hackers. Dutch and German security

Signal responds to phishing attacks with new in-app security warnings Read More »

Over 500 Organizations Hit in Years-Long Phishing Campaign

phishing /

Over 500 Organizations Hit in Years-Long Phishing Campaign 2026-05-11 at 07:22 By Ionut Arghire Victims span across the aviation, critical infrastructure, energy, logistics, public administration, and technology sectors. The post Over 500 Organizations Hit in Years-Long Phishing Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Over 500 Organizations Hit in Years-Long Phishing Campaign Read More »

Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations

AitM, Microsoft, phishing /

Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations 2026-05-05 at 17:45 By Eduard Kovacs The malicious emails claim to contain a conduct report and lure victims to a Microsoft phishing website that leverages AitM. The post Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations appeared first on SecurityWeek. This article is an excerpt

Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations Read More »

Robinhood Vulnerability Exploited for Phishing Attacks

phishing, robinhood /

Robinhood Vulnerability Exploited for Phishing Attacks 2026-04-28 at 18:06 By Eduard Kovacs Legitimate-looking emails coming from Robinhood systems lured recipients to phishing websites. The post Robinhood Vulnerability Exploited for Phishing Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Robinhood Vulnerability Exploited for Phishing Attacks Read More »

The Behavioral Shift: Why Trusted Relationships Are the Newest Attack Surface

email security, phishing /

The Behavioral Shift: Why Trusted Relationships Are the Newest Attack Surface 2026-04-23 at 14:17 By Kevin Townsend New analysis from Abnormal AI reveals how attackers have abandoned technical exploits to weaponize routine workflows and internal trust. The post The Behavioral Shift: Why Trusted Relationships Are the Newest Attack Surface appeared first on SecurityWeek. This article

The Behavioral Shift: Why Trusted Relationships Are the Newest Attack Surface Read More »

Cyberattack on French government agency triggers phishing alert

breach, cybercrime, data breach, EU, France, News, phishing /

Cyberattack on French government agency triggers phishing alert 2026-04-22 at 19:55 By Sinisa Markovic France Titres, a French government agency, has disclosed a data breach that may have exposed user data from its online portal. France Titres, also known as the Agence nationale des titres sécurisés (ANTS), operates under the French Ministry of the Interior

Cyberattack on French government agency triggers phishing alert Read More »

Scroll to Top