Phishing Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Email Security

Microsoft 365 Direct Send Abused for Phishing

Hackers are abusing the Microsoft 365 Direct Send feature to deliver phishing emails that bypass email security controls.

Ionut ArghireJune 27, 2025

Data Breaches

Russian Government Hackers Caught Buying Passwords from Cybercriminals

Microsoft flags a new Kremlin hacking team buying stolen usernames and passwords from infostealer markets for use in cyberespionage attacks.

Ryan NaraineMay 27, 2025

Data Breaches

Coinbase Says Rogue Contractor Data Breach Affects 69,461 Users

A mandatory filing to the Maine Attorney General says 69,461 customers nationwide were affected and dates the breach back to last December.

Ryan NaraineMay 21, 2025

Artificial Intelligence

AI-Powered Polymorphic Phishing Is Changing the Threat Landscape

Combined with AI, polymorphic phishing emails have become highly sophisticated, creating more personalized and evasive messages that result in higher attack success rates.

Stu SjouwermanApril 24, 2025

Application Security

Proofpoint: Watch Out for Nighthawk Hacking Tool Abuse

Security researchers at Proofpoint are calling attention to the discovery of a commercial red-teaming tool called Nighthawk, warning that the command-and-control framework is likely...

Ryan NaraineNovember 23, 2022

Cybercrime

Microsoft Warns of Cybercrime Group Delivering Royal Ransomware, Other Malware

A threat actor tracked as DEV-0569 and known for the distribution of various malicious payloads was recently observed updating its delivery methods, Microsoft warns.

Ionut ArghireNovember 18, 2022

Application Security

Palo Alto to Acquire Israeli Software Supply Chain Startup

Cybersecurity powerhouse Palo Alto Networks on Thursday announced plans to spend $195 million in cash to acquire Israeli startup Cider Security, a deal that...

Ryan NaraineNovember 17, 2022

Application Security

US Gov Warning: Start Hunting for Iranian APTs That Exploited Log4j

The U.S. government on Wednesday issued a blunt recommendation for organizations running VMWare Horizon servers: Initiate threat-hunting activities to find and expel Iranian APT...

Ryan NaraineNovember 16, 2022

Application Security

Akeyless Raises $65 Million for Secrets Management Tech

Israeli early-stage startup Akeyless has banked a whopping $65 million in venture capital funding to build technology to help businesses manage credentials, certificates, keys...

Ryan NaraineNovember 16, 2022

Application Security

Bishop Fox Adds $46 Million to Series B Funding Round

Continuous attack surface management pioneer Bishop Fox continues to attract the attention of investors with the banking of another $46 million in growth funding...

Ryan NaraineNovember 15, 2022

Cybercrime

Long-Standing Chinese Cybercrime Campaign Spoofs Over 400 Brands

Threat intelligence firm Cyjax has uncovered a long-standing and sophisticated cybercrime campaign spoofing more than 400 popular brands.

Ionut ArghireNovember 15, 2022

Application Security

Gaping Authentication Bypass Holes in VMware Workspace One

Virtualization technology giant VMware joined the Patch Tuesday train this week to deliver urgent security patches to its VMware Workspace One product.

Ryan NaraineNovember 9, 2022

Application Security

Microsoft Scrambles to Thwart New Zero-Day Attacks

The zero-day attacks against Microsoft’s software products are showing no signs of slowing down.

Ryan NaraineNovember 8, 2022

Application Security

Microsoft: China Flaw Disclosure Law Part of Zero-Day Exploit Surge

The world’s largest software maker is warning that China-based nation state threat actors are taking advantage of a one-year-old law to “stockpile” zero-days for...

Ryan NaraineNovember 7, 2022

Identity & Access

CISA Urges Organizations to Implement Phishing-Resistant MFA

The US Cybersecurity and Infrastructure Security Agency (CISA) has published guidance on how organizations can protect against phishing and other threats by implementing phishing-resistant...

Ionut ArghireNovember 2, 2022

Cybercrime

Hackers Stole Source Code, Personal Data From Dropbox Following Phishing Attack

Dropbox revealed on November 1 that it recently suffered a data breach where malicious actors gained access to some source code and personal information...

Eduard KovacsNovember 2, 2022

Cybercrime

Bed Bath & Beyond Investigating Data Breach After Employee Falls for Phishing Attack

Bed Bath & Beyond revealed last week in an SEC filing that it recently suffered a data breach after an employee fell victim to...

Eduard KovacsNovember 1, 2022

Cybercrime

Twilio Says Employees Targeted in Separate Smishing, Vishing Attacks

Enterprise communications firm Twilio has concluded its investigation into the recent data breach and revealed on Thursday that its employees were targeted in smishing...

Eduard KovacsOctober 28, 2022

Cybercrime

See Tickets Customer Payment Card Data Stolen by Web Skimmer

Ticketing services agency See Tickets is informing users that their payment card data was likely exposed after hackers injected skimmer code on its website.

Ionut ArghireOctober 27, 2022

Application Security

New PowerShell Backdoor Poses as Part of Windows Update Process

Cybersecurity firm SafeBreach has issued a warning about a new PowerShell backdoor that disguises itself as part of the Windows update process to remain...

Ionut ArghireOctober 19, 2022

Audits

Bolster Raises $15 Million to Tackle Fakes and Frauds

California startup Bolster, Inc. has raised $15 million in venture capital funding to build a fraud prevention platform for businesses.The early-stage funding round was...

Ryan NaraineOctober 18, 2022

Application Security

IDA Pro Owner Hex-Rays Acquired by European VC Firm

European venture capital and private equity firm Smartfin on Tuesday announced a deal to acquire Hex-Rays, the Belgian company behind the widely deployed IDA...

Ryan NaraineOctober 18, 2022

Application Security

Zimbra Patches Under-Attack Code Execution Bug

Messaging and collaboration software maker Zimbra has rushed out patches to provide cover for a code execution flaw that has already been exploited to...

Ryan NaraineOctober 17, 2022

Application Security

Zoom for macOS Contains High-Risk Security Flaw

Video messaging technology powerhouse Zoom has rolled out a high-priority patch for macOS users alongside a warning that hackers could abuse the software flaw...

Ryan NaraineOctober 17, 2022

Page 5 of 52‹ Previous 1 2 3 456 7 8 9 Next ›Last »

Virtual Event: Threat Detection and Incident Response Summit

May 21, 2025

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

May 29, 2025

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Jessica Newman has joined Sophos as General Manager of Global Cyber Insurance.

Breach and attack simulation solutions provider AttackIQ has appointed Pete Luban as Field Chief Information Security Officer.

Matthew Cowell has assumed the role of VP of Strategic Alliances at Nozomi Networks. He previously served in the same role at Dragos.

Bret Arsenault is retiring from his full-time role after 35 years at Microsoft.

Social engineering defense platform Doppel has appointed Bobby Ford as Chief Strategy and Experience Officer.

More People On The Move

SECURITYWEEK NETWORK:

ICS:

Email Security

Microsoft 365 Direct Send Abused for Phishing

Data Breaches

Russian Government Hackers Caught Buying Passwords from Cybercriminals

Data Breaches

Coinbase Says Rogue Contractor Data Breach Affects 69,461 Users

Artificial Intelligence

AI-Powered Polymorphic Phishing Is Changing the Threat Landscape

Application Security

Proofpoint: Watch Out for Nighthawk Hacking Tool Abuse

Cybercrime

Microsoft Warns of Cybercrime Group Delivering Royal Ransomware, Other Malware

Application Security

Palo Alto to Acquire Israeli Software Supply Chain Startup

Application Security

US Gov Warning: Start Hunting for Iranian APTs That Exploited Log4j

Application Security

Akeyless Raises $65 Million for Secrets Management Tech

Application Security

Bishop Fox Adds $46 Million to Series B Funding Round

Cybercrime

Long-Standing Chinese Cybercrime Campaign Spoofs Over 400 Brands

Application Security

Gaping Authentication Bypass Holes in VMware Workspace One

Application Security

Microsoft Scrambles to Thwart New Zero-Day Attacks

Application Security

Microsoft: China Flaw Disclosure Law Part of Zero-Day Exploit Surge

Identity & Access

CISA Urges Organizations to Implement Phishing-Resistant MFA

Cybercrime

Hackers Stole Source Code, Personal Data From Dropbox Following Phishing Attack

Cybercrime

Bed Bath & Beyond Investigating Data Breach After Employee Falls for Phishing Attack

Cybercrime

Twilio Says Employees Targeted in Separate Smishing, Vishing Attacks

Cybercrime

See Tickets Customer Payment Card Data Stolen by Web Skimmer

Application Security

New PowerShell Backdoor Poses as Part of Windows Update Process

Audits

Bolster Raises $15 Million to Tackle Fakes and Frauds

Application Security

IDA Pro Owner Hex-Rays Acquired by European VC Firm

Application Security

Zimbra Patches Under-Attack Code Execution Bug

Application Security

Zoom for macOS Contains High-Risk Security Flaw

Daily Briefing Newsletter

Trending

Virtual Event: Threat Detection and Incident Response Summit

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM

People on the move

Expert Insights

What Can Businesses Do About Ethical Dilemmas Posed by AI?

Like Ransoming a Bike: Organizational Muscle Memory Drives the Most Effective Response

Why Sincerity Is a Strategic Asset in Cybersecurity

Identity Is the New Perimeter: Why Proofing and Verification Are Business Imperatives

Choosing a Clear Direction in the Face of Growing Cybersecurity Demands

Daily Briefing Newsletter