phishing

Tycoon 2FA Fully Operational Despite Law Enforcement Takedown

Tycoon 2FA Fully Operational Despite Law Enforcement Takedown 2026-03-23 at 12:32 By Ionut Arghire Attack volumes are back to pre-disruption levels, and the adversary tactics have remained unchanged. The post Tycoon 2FA Fully Operational Despite Law Enforcement Takedown appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Tycoon 2FA Fully Operational Despite Law Enforcement Takedown Read More »

Russian hackers go after high-value targets through Signal

Russian hackers go after high-value targets through Signal 2026-03-23 at 11:20 By Sinisa Markovic Russian intelligence-linked hackers are targeting commercial messaging platforms, with Signal a primary focus, the FBI and CISA warn. The campaign is aimed at individuals of intelligence interest, including government personnel, journalists, and others with access to sensitive communications. It is believed

Russian hackers go after high-value targets through Signal Read More »

Russian APT Exploits Zimbra Vulnerability Against Ukraine

Russian APT Exploits Zimbra Vulnerability Against Ukraine 2026-03-19 at 16:53 By Ionut Arghire Insufficient sanitization of CSS content within HTML emails leads to inline script execution when the message is opened in a browser. The post Russian APT Exploits Zimbra Vulnerability Against Ukraine appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Russian APT Exploits Zimbra Vulnerability Against Ukraine Read More »

Security Firm Executive Targeted in Sophisticated Phishing Attack

Security Firm Executive Targeted in Sophisticated Phishing Attack 2026-03-16 at 16:43 By Ionut Arghire The attackers used a DKIM-signed phishing email, trusted redirect infrastructure, compromised servers, and Cloudflare-protected phishing pages. The post Security Firm Executive Targeted in Sophisticated Phishing Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Security Firm Executive Targeted in Sophisticated Phishing Attack Read More »

AI-Assisted Phishing Campaign Exploits Browser Permissions to Capture Victim Data

AI-Assisted Phishing Campaign Exploits Browser Permissions to Capture Victim Data 2026-03-16 at 08:24 By rohansinhacyblecom Executive Summary Cyble Research & Intelligence Labs (CRIL) has identified a widespread, highly active social engineering campaign hosted primarily on edgeone.app infrastructure. The initial access vectors are diverse — ranging from “ID Scanner,” and “Telegram ID Freezing,” to “Health Fund

AI-Assisted Phishing Campaign Exploits Browser Permissions to Capture Victim Data Read More »

HR, recruiters targeted in year-long malware campaign

HR, recruiters targeted in year-long malware campaign 2026-03-10 at 15:39 By Zeljka Zorz An attack campaign targeting HR departments and job recruiters has been stealthily compromising systems, Aryaka researchers have discovered. By avoiding analysis environments and leveraging a specialized module designed to kill antivirus and endpoint detection software, the Russian-speaking attacker(s) behind this campaign have

HR, recruiters targeted in year-long malware campaign Read More »

Phishing campaign spoofs local officials to steal permit fees

Phishing campaign spoofs local officials to steal permit fees 2026-03-10 at 13:01 By Sinisa Markovic The FBI is warning about a phishing scheme in which cybercriminals impersonate city and county officials to solicit fraudulent payments for planning and zoning permits. Criminals mine publicly available permit data to find likely targets and make their outreach appear

Phishing campaign spoofs local officials to steal permit fees Read More »

Russian hackers crack into officials’ Signal and WhatsApp accounts

Russian hackers crack into officials’ Signal and WhatsApp accounts 2026-03-09 at 17:02 By Sinisa Markovic Russian state hackers are trying to break into Signal and WhatsApp accounts used by diplomats, military staff, and government officials worldwide, Dutch intelligence agencies warned. They believe journalists and other people who attract attention from Moscow may also be affected.

Russian hackers crack into officials’ Signal and WhatsApp accounts Read More »

Internet Infrastructure TLD .arpa Abused in Phishing Attacks

Internet Infrastructure TLD .arpa Abused in Phishing Attacks 2026-03-09 at 15:37 By Ionut Arghire Abusing DNS record management controls, the threat actor hides the location of malicious content via Cloudflare. The post Internet Infrastructure TLD .arpa Abused in Phishing Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Internet Infrastructure TLD .arpa Abused in Phishing Attacks Read More »

Why phishing still works today

Why phishing still works today 2026-03-06 at 08:30 By Help Net Security In this Help Net Security video, Gal Livschitz, Senior Penetration Tester at Terra Security, explains how phishing has evolved and why employees still fall for it. He outlines how phishing now uses HTTPS, branded pages, and lookalike domains, making attacks harder to spot.

Why phishing still works today Read More »

Authorities pull plug on Tycoon 2FA phishing-as-a-service platform

Authorities pull plug on Tycoon 2FA phishing-as-a-service platform 2026-03-05 at 10:51 By Sinisa Markovic Tycoon 2FA, a phishing-as-a-service platform that allowed cybercriminals to bypass MFA and break into online accounts, has been disrupted by law enforcement agencies and cybersecurity partners. Takedown of the Tycoon 2FA phishing-as-a-service platform (Source: Europol) Active since August 2023, Tycoon 2FA

Authorities pull plug on Tycoon 2FA phishing-as-a-service platform Read More »

Threat actors weaponize OAuth redirection logic to deliver malware

Threat actors weaponize OAuth redirection logic to deliver malware 2026-03-03 at 19:46 By Zeljka Zorz An ongoing phishing campaign is abusing the OAuth authentication redirection mechanism to avoid triggering conventional email and browser defenses, Microsoft researchers have revealed. The attackers are targeting government and public-sector organizations, and redirecting unsuspecting users from trusted login pages to

Threat actors weaponize OAuth redirection logic to deliver malware Read More »

Ransomware activity peaks outside business hours

Ransomware activity peaks outside business hours 2026-02-27 at 12:18 By Anamarija Pogorelec Intrusions continue to center on credential access and timed execution outside standard business hours. The Sophos Active Adversary Report 2026 analyzes 661 incident response and managed detection and response cases handled between November 1, 2024 and October 31, 2025, spanning organizations in 70

Ransomware activity peaks outside business hours Read More »

Airline brands become launchpads for phishing, crypto fraud

Airline brands become launchpads for phishing, crypto fraud 2026-02-25 at 08:05 By Sinisa Markovic Airline brands sit at the center of peak travel booking cycles, loyalty programs, and high value transactions. Criminal groups continue to register thousands of lookalike domains tied to these brands, targeting travelers, employees, and business partners. Recent threat intelligence from BforeAI’s

Airline brands become launchpads for phishing, crypto fraud Read More »

State-backed phishing attacks targeting military officials and journalists on Signal

State-backed phishing attacks targeting military officials and journalists on Signal 2026-02-06 at 16:53 By Zeljka Zorz German security authorities are warning that a likely state-backed hacking group is engaged in attempts at phishing senior political figures, military officials, diplomats, and investigative journalists across Germany and Europe via Signal. The authorities also noted that while these

State-backed phishing attacks targeting military officials and journalists on Signal Read More »

AI is driving a new kind of phishing at scale

AI is driving a new kind of phishing at scale 2026-02-05 at 09:11 By Sinisa Markovic Email remains a primary entry point for attackers, and security teams continue to manage high volumes of malicious messages that change form across campaigns. Attackers generate large numbers of messages with small variations in wording, structure, and delivery paths.

AI is driving a new kind of phishing at scale Read More »

Over 100 Organizations Targeted in ShinyHunters Phishing Campaign

Over 100 Organizations Targeted in ShinyHunters Phishing Campaign 2026-01-27 at 17:17 By Eduard Kovacs Domains set up by the threat actor suggest attacks aimed at Atlassian, Canva, Epic Games, HubSpot, Moderna, ZoomInfo, and WeWork. The post Over 100 Organizations Targeted in ShinyHunters Phishing Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Over 100 Organizations Targeted in ShinyHunters Phishing Campaign Read More »

Scroll to Top