Phishing
CISA, NSA, FBI, and MS-ISAC have released guidance and prevention recommendations on common phishing techniques.
Hi, what are you looking for?
Microsoft flags a new Kremlin hacking team buying stolen usernames and passwords from infostealer markets for use in cyberespionage attacks.
CISA, NSA, FBI, and MS-ISAC have released guidance and prevention recommendations on common phishing techniques.
A recently observed phishing campaign targeting Microsoft accounts is using LinkedIn smart links to bypass defenses.
An open redirection vulnerability in the popular job search platform Indeed has been exploited in a series of phishing attacks.
A recently introduced Google account sync feature has been blamed after sophisticated hackers attacked 27 cryptocurrency firms via Retool.
Cybercriminals breached an AP Stylebook website and obtained information on customers who were then targeted in phishing attacks.
Check Point has observed a wave of phishing attacks launched via Google Looker Studio to steal credentials and funds from intended victims.
A widespread phishing campaign utilizing malicious QR codes has hit organizations in various industries, including a major energy company in the US.
Threat actors have exploited a Salesforce email service zero-day vulnerability and abused Meta features in a sophisticated phishing campaign.
Menlo Security introduced anti-phishing solutions that analyze what users see on a landing page rather than just analyzing the content of an email.
Threat actors are using Google AMP URLs in phishing campaigns as a new detection evasion tactic.
While traditional security awareness teaches users how to recognize social engineering, new behavior changing trains the brain on the correct recognition and response to...
Famed hacker Kevin Mitnick has died after a battle with pancreatic cancer. At the time of his death, he was Chief Hacking Officer at...
Security awareness training isn’t working to the level it needs to. Social engineering, however, is getting better. Why doesn’t awareness training work, and how...
A new phishing-as-a-service (PaaS) tool has been observed targeting businesses, mainly in the manufacturing, healthcare, technology, and real estate sectors.
Reddit says its systems were hacked following a sophisticated phishing attack aimed at employees.
The UK’s NCSC has issued a security advisory to warn about spearphishing campaigns conducted by two unrelated Russian and Iranian hacker groups.
The North Korean APT tracked as TA444 is either moonlighting from its previous primary purpose, expanding its attack repertoire, or is being impersonated by...
Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...
Hack The Box Raises $55 Million in Funding Round Led by Carlyle
Microsoft’s security patching machine hummed into overdrive Tuesday with the release of fixes for at least 97 documented software vulnerabilities, including a zero-day that’s...