Counterfeit CAPTCHA PDFs Disseminate Lumma Stealer through Webflow, GoDaddy, and Alternative Domains
Security analysts have revealed an extensive phishing scheme that employs forged CAPTCHA visuals distributed via PDF files hosted on Webflow's...
Phishing
Silver Fox APT Uses Winos 4.0 Malware in Cyber Attacks Against Taiwanese Organizations
Silver Fox APT Deploys Winos 4.0 Malware in Cyber Operations Targeting Taiwanese EntitiesReports have emerged that a recent offensive is...
Report on CrowdStrike Security: Social Engineering Attacks Fueled by AI Creation
As per CrowdStrike's Global Threat Report for 2025, phishing has become less prevalent compared to previous years. Threat actors are...
Hackers Exploit CAPTCHA Technique to Circumvent Security Scanners in Webflow CDN PDFs
There has been a wide-ranging phishing scheme detected that is utilizing fake PDF files stored on the Webflow content distribution...
Extensible Vector Graphics files present a fresh phishing danger
Miscreants who engage in phishing activities via email have intensified their exploitation of a new deceptive method aimed at sidestepping...
Steps for Thwarting Phishing Attacks using Multi-Factor Authentication
Phishing exploits the most vulnerable aspect in any organization’s cybersecurity system — human conduct. Phishing campaigns are often initiated through...
Recent Cybersecurity Incident: PureCrypter Utilizes Agent Tesla and Fresh TorNet Backdoor in Continuing Cyber Campaigns
An individual driven by financial incentives has been connected to a persistent phishing email initiative that has been active since...
Phishing Emails Targeting Australian Companies Up by 30% in 2024
A recent study by cybersecurity company Abnormal Security revealed a 30% increase in the volume of phishing emails directed at...
‘Deceptive Log’ Microsoft Spoofing Ploy Evades Two-Factor Security
French cybersecurity experts at Sekoia discovered an innovative phishing-as-a-service kit aimed at Microsoft 365 accounts in December 2024, as reported...
Recent ‘Sneaky 2FA’ Phishing Kit Aims at Microsoft 365 Accounts by Bypassing 2FA Codes
A group of cybersecurity experts have uncovered a fresh phishing kit called "Sneaky 2FA" that targets Microsoft 365 accounts. This...
Secure Three Devices With This Ultimate Protection Software
Summary: Safeguard your privacy on three gadgets with a 12-month subscription to Trend Micro Maximum Security for just $19.99 (regularly...
Phishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces
Editor’s note: Sophos MDR’s Johua Rawles, Mark Parsons, Jordon Olness, and Colin Cowie contributed to this report. One of the...
HubPhish Manipulates HubSpot Utilities to Focus on 20,000 European Users for Stealing Credentials
A novel phishing campaign has been revealed by cybersecurity analysts, aiming to acquire account details from European organizations and gain...
Unauthorized Users Utilize Microsoft MSC Files to Distribute Concealed Backdoor in Incidents in Pakistan
Recent observations show that a fresh phishing operation is using tax-related bait to distribute a covert backdoor payload in targeted...
Deceptive Headhunters Disseminate Banking Trojan through Malicious Applications in Phishing Scheme
Experts in cybersecurity have revealed an advanced mobile phishing (also known as mishing) operation aimed at spreading a modified edition...
