Nation-State
The targeting of Diehl Defence is significant because the company specializes in the production of missiles and ammunition.
Hi, what are you looking for?
SecurityWeek
Phishing
Researchers see dozens of fake DeepSeek websites used for credential phishing, cryptocurrency theft, and scams.
Cybercrime
Business resilience must be the ultimate purpose of all the security controls and processes we employ, because we will never conclusively defeat or protect...
Phishing
Noteworthy stories that might have slipped under the radar: several multi-million dollar settlements, CrowdStrike-themed phishing emails, and MITRE launches D3FEND 1.0.
Phishing
Fortinet warns of a phishing campaign that uses legitimate links to take over the victims’ PayPal accounts.
Phishing
General Dynamics says several benefits accounts were hacked after threat actors targeted employees in a phishing campaign.
Phishing
Okta has warned customers that it has seen an increase in phishing attacks impersonating its support team.
Phishing
Threat actors are abusing the Microsoft Sway service to host phishing pages leveraged in QR phishing attacks targeting Office 365 users.
Mobile & Wireless
New phishing attacks target iOS and Android users with Progressive Web Applications and WebAPKs to steal banking information.
Phishing
Multiple Russian, Belarusian, and Western entities perceived as Russia’s enemies have been targeted in two recent spear-phishing campaigns.
Email Security
SecurityWeek spoke with Mike Britton, CISO at Abnormal Security, to understand what the company has learned about current social engineering and phishing attacks.
Email Security
Threat actors have exploited Proofpoint’s email protection service to deliver millions of spoofed phishing emails.
Data Breaches
A threat actor sent over 35,000 phishing emails after hacking into Ethereum Foundation's account on a mailing list platform.
Phishing
Employees of the Any.Run malware analysis service were recently targeted in a phishing attack that was part of a BEC campaign.
Cybercrime
Verizon’s 2024 DBIR shows that vulnerability exploitation increased three times and confirmed data breaches doubled compared to the previous year.
Phishing
A new phishing campaign abuses compromised email accounts and targets corporate users with PDF files hosted on Autodesk Drive.
Email Security
KnowBe4 boasts that the merger will create “the largest, advanced AI-driven cybersecurity platform for managing human risk.”
Cybercrime
LabHost, a major phishing-as-a-service platform, has been shut down as part of a major law enforcement operation.
Vulnerabilities
ClearSky Cyber Security says it has seen a new Windows zero-day being exploited by a Chinese APT named Mustang Panda.
Malware & Threats
Vulnerabilities
Vulnerabilities
