PHISHING 84
- Researchers Warn of Global Surge in Fake Shipment Tracking Scams
- Russian APT Targets Ukraine with BadPaw and MeowMeow Malware
- Europol, Microsoft, TrendAI™ and Collaborators Halt Tycoon 2FA Operations
- JPCERT/CC - JSAC2026 Day 2 Highlights
- New Phishing Framework Starkiller Proxies Real Login Pages to Bypass MFA
- Industrial-Scale Fake Coretax Apps Drive $2m Fraud in Indonesia
- Job Scam Alert Fake Google Forms Site Harvesting Logins
- Fake Incident Report Used in Phishing Campaign
- Suspected Russian Hackers Deploy CANFAIL Malware Against Ukraine
- Snail Mail Phishing Targets Trezor and Ledger Users
- Operation Macromaze APT28's New Campaign Unveiled
- Fintech Firm Figure Discloses Data Breach Following Phishing Attack
- Microsoft Store Outlook Add-in Hijacked to Steal 4,000 Accounts
- Pride Month Phishing Targets Employees via Trusted Email Services
- Deadvax Threat Research Security Advisory
- Phishing kits adapt to the script of callers
- I'm locked in!
- KONNI Adopts AI to Generate PowerShell Backdoors
- Phishing and Spoofed Sites Remain Primary Entry Points For Olympics
- Peruvian Loan Scam Harvests Cards and PINs via Fake Applications
- Don't click on the LastPass 'create backup' link - it's a scam
- Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading
- New PayPal Scam Sends Verified Invoices With Fake Support Numbers
- German Manufacturing Under Phishing Attacks - Tracking a Stealthy AsyncRAT Campaign
- Phishing Campaign Uses Maduro Arrest Story to Deliver Backdoor Malware
- Ledger Confirms Global-e Breach, Warns Users of Phishing Attempts
- Cloud Atlas activity in the first half of 2025 what changed
- OAuth Device Code Phishing Campaigns Surge Targets Microsoft 365
- Russian APT actor phishes the Baltics and the Balkans
- ThreatsDay Bulletin - AI Malware, Voice Bot Flaws, Crypto Laundering, IoT Attacks — and 20 More Stories
- Attackers are using “Sneaky 2FA” to create fake sign-in windows that look real
- Russian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests' Payment Data
- Google Sues China-Based Hackers Behind $1 Billion Lighthouse Phishing Platform
- Phishers try to lure 5K Facebook advertisers with fake business pages
- List of AI Tools Promoted by Threat Actors in Underground Forums and Their Capabilities
- Large-Scale ClickFix Phishing Attacks Target Hotel Systems with PureRAT Malware
- BiDi Swap The bidirectional text trick that makes fake URLs look real
- Whisper 2FA Behind One Million Phishing Attempts Since July
- Cybercrime ring GXC Team dismantled in Spain, 25-year-old leader detained
- Foreign threat actors adopting ChatGPT, AI to bolster "old playbook" of attacks, OpenAI finds
- Phishing Dominates EU-Wide Intrusions, says ENISA
- New MatrixPDF toolkit turns PDFs into phishing and malware lures
- Microsoft Flags AI-Driven Phishing LLM-Crafted SVG Files Outsmart Email Security
- Hackers Leverage AI-Generated Code to Obfuscate Its Payload and Evade Traditional Defenses
- PyPI urges users to reset credentials after new phishing attacks
- RaccoonO365 Phishing Network Dismantled as Microsoft, Cloudflare Take Down 338 Domains
- Going Underground China-aligned TA415 Conducts U.S.-China Economic Relations Targeting Using VS Code Remote Tunnels
- AI-Forged Military IDs Used in North Korean Phishing Attack
- Axios Abuse and Salty 2FA Kits Fuel Advanced Microsoft 365 Phishing Attacks
- iCloud Calendar abused to send phishing emails from Apple’s servers
- Iranian Hackers Exploit 100+ Embassy Email Accounts in Global Phishing Targeting Diplomats
- New Phishing Attack Via OneDrive Attacking C-level Employees for Corporate Credentials
- New Phishing Campaign Abuses ConnectWise ScreenConnect to Take Over Devices
- Transparent Tribe Targets Indian Govt With Weaponized Desktop Shortcuts via Phishing
- New Gmail Phishing Attack Uses AI Prompt Injection to Evade Detection
- Hackers Weaponize QR Codes Embedded with Malicious Links to Steal Sensitive Information
- GenAI Used For Phishing Websites Impersonating Brazil’s Government
- Mozilla flags phishing wave aimed at hijacking trusted Firefox add-ons
- Microsoft OAuth App Impersonation Campaign Leads to MFA Phishing
- Exploiting Direct Send Attackers Abuse Microsoft 365 to Deliver Internal Phishing Attacks
- RedHook A New Android Banking Trojan Targeting Users in Vietnam
- BIDI Swap Unmasking the Art of URL Misleading with Bidirectional Text Tricks
- CERT-UA Discovers LAMEHUG Malware Linked to APT28, Using LLM for Phishing Campaign
- Phish and Chips China-Aligned Espionage Actors Ramp Up Taiwan Semiconductor Industry Targeting
- Threat Actors Exploit SVG Files in Stealthy JavaScript Redirects
- Google Gemini Tricked Into Showing Phishing Message Hidden in Email
- Deploying NetSupport RAT via WordPress & ClickFix
- Phishing Attack Deploying Malware on Indian Defense BOSS Linux
- Silent Push Uncovers Chinese Fake Marketplace e-Commerce Phishing Campaign
- Okta observes v0 AI tool used to build phishing sites
- Large Language Models (LLMs) Are Falling for Phishing Scams What Happens When AI Gives You the Wrong URL?
- DeepSeek Deception Sainbox RAT & Hidden Rootkit Delivery
- Patch and Persist Darktrace’s Detection of Blind Eagle (APT-C-36)
- Iranian Educated Manticore Targets Leading Tech Academics
- Hive0154 aka Mustang Panda shifts focus on Tibetan community to deploy Pubload backdoor
- APT36 Phishing Campaign Targets Indian Defense Using Credential-Stealing Malware
- What’s in an ASP? Creative Phishing Attack on Prominent Academics and Critics of Russia
- How Fraudsters Are Poisoning Search Results to Promote Phishing Sites
- Inside FluxPanel How Phishing Enables Real-Time Ecommerce Checkout Hijacks
- GitHub Device Code Phishing
- Global analysis of Adversary-in-the-Middle phishing threats
- Flask Phishing Kit Targeted Credential Theft Using Open-Source Technology
- Same Automated Impersonation for All
- Haozi’s Plug-and-Play Phishing-as-a-Service Has Facilitated $280,000 of Criminal Transactions Over Past Five Months