Topic: phishing emails
-
Darktrace: 32 Million Phishing Emails Targeted Identities in 2025
Identity-based cyber attacks surged in 2025, with 32 million high-confidence phishing emails detected, marking a shift from breaching defenses to credential theft as the primary threat. Identity compromise has overtaken vulnerability exploitation as the main attack entry point, with adversaries u...
Read More » -
Microsoft Warns of "Payroll Pirate" Scam Targeting Employee Paychecks
A phishing campaign called "Payroll Pirate" targets corporate HR accounts to redirect employee paychecks into criminal-controlled bank accounts by manipulating platforms like Workday. Attackers use adversary-in-the-middle techniques to intercept login credentials and multi-factor authentication c...
Read More » -
Chrome Zero-Day Used to Spread LeetAgent Spyware
A zero-day vulnerability in Google Chrome (CVE-2025-2783) was exploited via phishing in Operation ForumTroll, allowing attackers to escape Chrome's sandbox and deploy spyware developed by Memento Labs. The attack delivered LeetAgent spyware, which executed commands, stole files, and communicated ...
Read More » -
GitHub Abused in Malware-as-a-Service Attack Campaign
Security researchers found a malware campaign using GitHub repositories to distribute threats like SmokeLoader and AsyncRAT via a malware-as-a-service model, linked to the Amadey botnet and Emmenhtal loaders. Attackers shifted from phishing emails to hosting malicious scripts on GitHub, exploitin...
Read More » -
Italian Spyware 'Dante' Exploits Chrome Zero-Day Flaw
A cyber espionage campaign exploited a critical Google Chrome zero-day vulnerability (CVE-2025-2783) to deploy commercial spyware on high-value targets in Russia and Belarus, bypassing the browser's sandbox protection. The attack, named Operation ForumTroll, used forged forum invitations to deliv...
Read More » -
Instagram Denies Data Breach Claims
Meta denied a system breach, attributing a wave of password reset emails to an external party exploiting a technical flaw that has since been fixed. A separate data scraping incident exposed largely public information from about 17 million accounts, with 6.2 million records including an email add...
Read More » -
SMBs Hike Prices After Cyberattacks: The "Cyber Tax"
A majority (81%) of American small businesses experienced a security breach last year, with 38% of those affected directly raising prices for customers, creating a hidden "cyber tax" that contributes to inflation. AI-powered attacks were a primary cause for 41% of breached businesses, enabling so...
Read More » -
Hackers Exploit Microsoft ClickOnce & AWS for Stealth Attacks
The OneClik cyberattack campaign exploits Microsoft ClickOnce and custom Golang malware to target energy sector organizations, disguising malicious traffic within legitimate AWS cloud services. Attackers use phishing emails with fraudulent Azure-hosted sites to distribute malicious ClickOnce file...
Read More » -
70,000 Fake Bank Scam Emails Target Australians
A sophisticated callback scam impersonating major Australian banks has targeted tens of thousands of businesses, with over 70,000 detected attempts in one month, particularly affecting sectors like education, legal, and insurance. Scammers send hyper-realistic emails with fabricated transaction d...
Read More » -
Salesforce Gainsight Compromise: Key Findings & Customer Action Steps
Salesforce detected unauthorized API calls from non-whitelisted IPs via the Gainsight Connected App, prompting immediate security actions to protect customer data. Gainsight has been temporarily removed from the Hubspot Marketplace, with only three organizations confirmed impacted and no verified...
Read More »