PHISHING 55

• ThreatsDay Bulletin - AI Malware, Voice Bot Flaws, Crypto Laundering, IoT Attacks — and 20 More Stories Nov 27, 2025
• Attackers are using “Sneaky 2FA” to create fake sign-in windows that look real Nov 19, 2025
• Russian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests' Payment Data Nov 13, 2025
• Google Sues China-Based Hackers Behind $1 Billion Lighthouse Phishing Platform Nov 12, 2025
• Phishers try to lure 5K Facebook advertisers with fake business pages Nov 10, 2025
• List of AI Tools Promoted by Threat Actors in Underground Forums and Their Capabilities Nov 6, 2025
• Large-Scale ClickFix Phishing Attacks Target Hotel Systems with PureRAT Malware Nov 6, 2025
• BiDi Swap The bidirectional text trick that makes fake URLs look real Oct 28, 2025
• Whisper 2FA Behind One Million Phishing Attempts Since July Oct 15, 2025
• Cybercrime ring GXC Team dismantled in Spain, 25-year-old leader detained Oct 11, 2025
• Foreign threat actors adopting ChatGPT, AI to bolster "old playbook" of attacks, OpenAI finds Oct 8, 2025
• Phishing Dominates EU-Wide Intrusions, says ENISA Oct 2, 2025
• New MatrixPDF toolkit turns PDFs into phishing and malware lures Sep 30, 2025
• Microsoft Flags AI-Driven Phishing LLM-Crafted SVG Files Outsmart Email Security Sep 29, 2025
• Hackers Leverage AI-Generated Code to Obfuscate Its Payload and Evade Traditional Defenses Sep 26, 2025
• PyPI urges users to reset credentials after new phishing attacks Sep 23, 2025
• RaccoonO365 Phishing Network Dismantled as Microsoft, Cloudflare Take Down 338 Domains Sep 17, 2025
• Going Underground China-aligned TA415 Conducts U.S.-China Economic Relations Targeting Using VS Code Remote Tunnels Sep 16, 2025
• AI-Forged Military IDs Used in North Korean Phishing Attack Sep 15, 2025
• Axios Abuse and Salty 2FA Kits Fuel Advanced Microsoft 365 Phishing Attacks Sep 9, 2025
• iCloud Calendar abused to send phishing emails from Apple’s servers Sep 7, 2025
• Iranian Hackers Exploit 100+ Embassy Email Accounts in Global Phishing Targeting Diplomats Sep 3, 2025
• New Phishing Attack Via OneDrive Attacking C-level Employees for Corporate Credentials Sep 2, 2025
• New Phishing Campaign Abuses ConnectWise ScreenConnect to Take Over Devices Aug 27, 2025
• Transparent Tribe Targets Indian Govt With Weaponized Desktop Shortcuts via Phishing Aug 25, 2025
• New Gmail Phishing Attack Uses AI Prompt Injection to Evade Detection Aug 24, 2025
• Hackers Weaponize QR Codes Embedded with Malicious Links to Steal Sensitive Information Aug 21, 2025
• GenAI Used For Phishing Websites Impersonating Brazil’s Government Aug 5, 2025
• Mozilla flags phishing wave aimed at hijacking trusted Firefox add-ons Aug 4, 2025
• Microsoft OAuth App Impersonation Campaign Leads to MFA Phishing Jul 31, 2025
• Exploiting Direct Send Attackers Abuse Microsoft 365 to Deliver Internal Phishing Attacks Jul 30, 2025
• RedHook A New Android Banking Trojan Targeting Users in Vietnam Jul 28, 2025
• BIDI Swap Unmasking the Art of URL Misleading with Bidirectional Text Tricks Jul 22, 2025
• CERT-UA Discovers LAMEHUG Malware Linked to APT28, Using LLM for Phishing Campaign Jul 18, 2025
• Phish and Chips China-Aligned Espionage Actors Ramp Up Taiwan Semiconductor Industry Targeting Jul 16, 2025
• Threat Actors Exploit SVG Files in Stealthy JavaScript Redirects Jul 15, 2025
• Google Gemini Tricked Into Showing Phishing Message Hidden in Email Jul 14, 2025
• Deploying NetSupport RAT via WordPress & ClickFix Jul 7, 2025
• Phishing Attack Deploying Malware on Indian Defense BOSS Linux Jul 4, 2025
• Silent Push Uncovers Chinese Fake Marketplace e-Commerce Phishing Campaign Jul 2, 2025
• Okta observes v0 AI tool used to build phishing sites Jul 1, 2025
• Large Language Models (LLMs) Are Falling for Phishing Scams What Happens When AI Gives You the Wrong URL? Jul 1, 2025
• DeepSeek Deception Sainbox RAT & Hidden Rootkit Delivery Jun 26, 2025
• Patch and Persist Darktrace’s Detection of Blind Eagle (APT-C-36) Jun 25, 2025
• Iranian Educated Manticore Targets Leading Tech Academics Jun 25, 2025
• Hive0154 aka Mustang Panda shifts focus on Tibetan community to deploy Pubload backdoor Jun 23, 2025
• APT36 Phishing Campaign Targets Indian Defense Using Credential-Stealing Malware Jun 21, 2025
• What’s in an ASP? Creative Phishing Attack on Prominent Academics and Critics of Russia Jun 18, 2025
• How Fraudsters Are Poisoning Search Results to Promote Phishing Sites Jun 17, 2025
• Inside FluxPanel How Phishing Enables Real-Time Ecommerce Checkout Hijacks Jun 12, 2025
• GitHub Device Code Phishing Jun 12, 2025
• Global analysis of Adversary-in-the-Middle phishing threats Jun 11, 2025
• Flask Phishing Kit Targeted Credential Theft Using Open-Source Technology Jun 10, 2025
• Same Automated Impersonation for All Jun 4, 2025
• Haozi’s Plug-and-Play Phishing-as-a-Service Has Facilitated $280,000 of Criminal Transactions Over Past Five Months May 29, 2025