social engineering attacks

The FBI attributes a global phishing campaign against encrypted messaging apps to Russian intelligence, targeting high-value individuals like officials and…

AI is being weaponized by cybercriminals to launch sophisticated, scalable attacks, such as voice cloning and novel malware, making traditional…

Nation-state hacking groups from Iran, China, and North Korea are increasingly using AI tools like Google's Gemini to enhance offensive…

A major resurgence of LummaStealer malware is being driven by sophisticated social engineering campaigns that use a technique called ClickFix…

A new phishing campaign is impersonating LastPass with urgent emails, using deceptive subject lines and links to malicious sites designed…

A data breach at Betterment occurred via a compromised third-party marketing tool, allowing hackers to send fraudulent cryptocurrency scam emails…

Cyber threats are evolving faster than defenses, with attackers constantly refining their tactics, techniques, and procedures (TTPs), creating a widening…

North Korean state-sponsored hackers stole over $2 billion in cryptocurrency in 2025, a 51% increase, by pivoting to fewer, more…

Phishing in 2025 became more sophisticated and identity-focused, with attacks increasingly occurring outside of email through channels like LinkedIn and…

Google is introducing an "advanced flow" to give experienced Android users more control over sideloading apps, balancing safety and freedom…

Cybercriminals are enhancing the ClickFix malware delivery method by using persuasive design elements like tutorial videos and countdown timers to…

Ransomware payment rates have plummeted to just 23% in Q3 2025, significantly undermining the financial model of cybercriminals and marking…

Microsoft has strengthened Internet Explorer mode security in Edge after attackers exploited zero-day vulnerabilities in August 2025, using social engineering…

TA585 is a sophisticated cybercriminal group known for its fully autonomous infrastructure, managing its own phishing campaigns, malware deployment, and…

A new cybercriminal group, Scattered Lapsus$ Hunters, is extorting nearly 40 major corporations by threatening to leak stolen data from…

Storm-2657, a cybercrime group, has been targeting U.S. university payroll systems since March 2025, primarily compromising Workday accounts through sophisticated…

The hacker group Shiny Hunters claims to have stolen nearly one billion records from Salesforce and is demanding ransom from…

Two key members of the Scattered Spider cybercrime group, Thalha Jubair and Owen Flowers, have been arrested and charged in…

A new wave of phishing attacks is exploiting Microsoft Teams, using fake IT support accounts to trick employees into installing…

A data breach at Farmers Insurance exposed the personal information of over 1.1 million customers due to a third-party vendor…