Collecting Cyber-News from over 60 sources

Tag: phishing

DOJ Seizes 400 Illegal FIFA World Cup Streaming Domains

Jun 29, 2026 5:16 PM

Tags: malware, phishing

The DOJ seized nearly 400 illegal World Cup streaming domains, warning that piracy sites also pose malware and phishing risks. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/doj-seizes-400-illegal-fifa-world-cup-streaming-domains/
236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers

Jun 29, 2026 4:16 PM

Tags: china, crypto, framework, network, open-source, phishing, scam

New findings unearthed by Infoblox show that more than 236,000 websites are using investment scam templates built using a legitimate Chinese open-source, cross-platform application development framework called DCloud Uni-App.The templates power bogus cryptocurrency exchanges, multi-language pig-butchering operations, WhatsApp phishing networks, fake gambling platforms, brand-impersonation First seen on thehackernews.com Jump to article: thehackernews.com/2026/06/236000-dcloud-uni-app-sites-used-in.html
Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse

Jun 29, 2026 2:17 PM

Tags: attack, cloud, cyber, cybersecurity, group, malware, phishing, russia, service, spear-phishing, threat, ukraine

A Russian advanced persistent threat (APT) group has continued to evolve and expand its malware arsenal as part of its ongoing cyber onslaught against Ukraine throughout 2025.Slovakian cybersecurity company ESET said it observed 35 distinct spear-phishing campaigns mounted by Gamaredon against new targets, with most of them taking place in the second half of the…
Bluekit Phishing Kit Uses Browserthe-Middle Attacks to Evade Detection

Jun 29, 2026 12:16 PM

Tags: attack, cybercrime, detection, phishing, service

A new phishing-as-a-service (PHaaS) platform called Bluekit is letting cybercriminals steal user accounts using a tricky method. While… First seen on hackread.com Jump to article: hackread.com/bluekit-phishing-uses-browser-in-the-middle-attacks/
FBI and CISA Warn Russian Hackers Stealing Verification Codes and Account PINs From Signal Users

Jun 29, 2026 12:16 PM

Tags: cisa, cyber, cybersecurity, hacker, intelligence, phishing, risk, russia, service, threat

U.S. cybersecurity authorities have issued a new warning about Russian intelligence-linked threat actors targeting secure messaging platforms, specifically highlighting the increased risk for Signal users. These threat actors are employing sophisticated phishing campaigns designed to steal verification codes and account PINs. In a joint Public Service Announcement (PSA) published on June 26, 2026, the Cybersecurity…
Brand Indicators for Message Identification auf dem Prüfstand – Lookalike-Domains machen BIMI-Logos zur potenziellen Phishing-Falle

Jun 29, 2026 12:16 PM

Tags: phishing

First seen on security-insider.de Jump to article: www.security-insider.de/bimi-lookalike-domains-phishing-email-sicherheit-a-8a01f15bcfcb423bf9ed5e26c9479336/
FBI Sounds Alarm Over Russian Intelligence Signal Phishing

Jun 29, 2026 11:16 AM

Tags: backup, intelligence, phishing, russia

The FBI claims Russian spies are targeting Signal backup keys First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/fbi-alarm-russian-intelligence/
Ghostwriter Hackers Use Real-Time WebSocket Relay to Bypass SMS and OTP MFA

Jun 29, 2026 10:16 AM

Tags: authentication, credentials, cyber, hacker, infrastructure, mfa, phishing, ukraine

UNC1151 tracked by many as Ghostwriter or FrostyNeighbor has advanced a credential-phishing technique that uses a real-time WebSocket relay to defeat SMS and OTP-based multi-factor authentication (MFA). The method was observed in a recent campaign that targeted Belarusian politician Yury Hubarevich and multiple Ukrainian portals, and Censys pivots show the infrastructure spans dozens of domains…
DCloud Uni-App Framework Powers 236,000+ Scam Domains Across Global Fraud Economy

Jun 29, 2026 8:16 AM

Tags: cyber, framework, fraud, phishing, scam

DCloud Uni-App has become a mass-production layer for fraud, with more than 236,000 distinct scam domains tied to a sprawling ecosystem of fake exchanges, wallet drainers, phishing portals, and investment schemes. The scale matters because it shows scam operations are no longer bespoke; they are templated, repeatable, and easy to clone across languages, regions, and…
Rokarolla Uses Fake Google Play Protect App to Target Banking and Cryptocurrency Users

Jun 29, 2026 8:16 AM

Tags: android, banking, browser, chrome, credentials, crypto, cyber, fraud, google, malicious, phishing, service

Rokarolla, a sophisticated Android banking trojan distributed via malicious websites that masquerade as trusted applications such as TikTok, Google Chrome and even Google Play Protect. Unlike simple credential stealers, Rokarolla is a multi-functional fraud platform that targets at least 217 banking and cryptocurrency apps and combines Accessibility Service abuse, phishing overlays, SMS interception, keylogging, screenshot…
New FBI Alert: Russian Intelligence Uses Signal Recovery Keys to Access Messages

Jun 27, 2026 8:17 PM

Tags: access, advisory, backup, cisa, intelligence, phishing, russia

FBI warns Russian spies now target Signal Backup Recovery Keys, enabling access to message history and long-term account takeover. The FBI and CISA updated their March 2026 warning about Russian intelligence phishing campaigns, and the new advisory adds a detail that wasn’t in the original: the operators have shifted their primary objective from stealing verification…
New FBI Alert: Russian Intelligence Uses Signal Recovery Keys to Access Messages

Jun 27, 2026 8:17 PM

Tags: access, advisory, backup, cisa, intelligence, phishing, russia

FBI warns Russian spies now target Signal Backup Recovery Keys, enabling access to message history and long-term account takeover. The FBI and CISA updated their March 2026 warning about Russian intelligence phishing campaigns, and the new advisory adds a detail that wasn’t in the original: the operators have shifted their primary objective from stealing verification…
Hospitality Sector Hit by Phishing Campaign Using Fake Guest Complaint Emails

Jun 27, 2026 7:16 PM

Tags: email, hacking, intelligence, microsoft, phishing, threat

Microsoft warns of a phishing campaign targeting the hospitality sector with fake guest emails that install TonRAT using resilient persistence. Microsoft Threat Intelligence published a detailed analysis on an ongoing hacking campaign against hospitality organizations that has been running since April 2026. The targets are specific: device names observed across compromised environments include strings like…
2026: Cybersicherheitslage in deutschen Unternehmen

Jun 27, 2026 1:17 PM

Tags: ai, cyberattack, phishing, social-engineering

Management Summary Cybervorfälle bleiben für deutsche Unternehmen ein operatives Kernthema: 75 Prozent der befragten Organisationen waren in den vergangenen zwölf Monaten betroffen. Phishing und Social Engineering dominieren weiterhin die aktuelle Bedrohungslage und stehen für 56 Prozent der erfassten Sicherheitsvorfälle. KI-gestützte Angriffe rücken strategisch in den Fokus: 45 Prozent sehen darin das größte Cyberrisiko der kommenden……
FBI: Russian hackers now target Signal backup recovery keys

Jun 27, 2026 1:16 AM

Tags: access, backup, cisa, hacker, intelligence, phishing, russia, service

The FBI and CISA are warning that a phishing campaign targeting Signal users tied to Russian intelligence services has evolved to steal Signal Backup Recovery Keys, allowing attackers to access victims’ historical messages. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-russian-hackers-now-target-signal-backup-recovery-keys/
FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys

Jun 26, 2026 10:17 PM

Tags: backup, cisa, group, hacker, intelligence, phishing, russia

The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup Recovery Key.Hand it over once, and the attacker can restore the account’s backup, read the private and group message history, and take over…
Five Eyes Warns AI Could Speed Cyberattacks Within Months

Jun 26, 2026 9:18 PM

Tags: ai, cyberattack, injection, phishing, risk

Five Eyes agencies warned that AI could speed cyberattacks within months, raising new risks around prompt injection, phishing, and enterprise AI tools. The post Five Eyes Warns AI Could Speed Cyberattacks Within Months appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-five-eyes-ai-cyberattacks/
Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Jun 26, 2026 1:16 PM

Tags: microsoft, phishing, threat

An active phishing campaign has been targeting hotel and other hospitality organizations across Europe and Asia since April 2026, using photo-themed ZIP files to drop a Node.js implant and dig into front-desk machines, Microsoft says.The company has not attributed the activity to a known threat actor, and the operators’ end goal is still unclear.The lure…
Mirage2FA phishing kit uses HTML smuggling to steal Microsoft 365 credentials

Jun 26, 2026 12:17 PM

Tags: credentials, login, microsoft, phishing

Mirage2FA, a phishing kit that combines short-lived HTML smuggling with obfuscated JavaScript loaders to deliver fake Microsoft 365 login pages and steal credentials during … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/26/mirage2fa-phishing-kit-microsoft-365-html-smuggling/
Scammers Abuse Shopify to Send Fake Invoices and Steal Credentials via Fake Support Calls

Jun 26, 2026 12:17 PM

Tags: credentials, cyber, email, exploit, phishing, scam, social-engineering

Scammers are increasingly exploiting Shopify’s ecosystem and its Shop order-tracking app to deliver fraudulent invoices directly into users’ purchase histories, marking a shift from traditional email-based phishing to in-app social engineering attacks. Security researchers Luis Corrons and Jakub Vavra from Gen have identified multiple campaigns in which fake receipts appear in the Shop app, impersonating…
Healthcare Vendor Xsolis Reports Breach Affecting 1.4M People

Jun 25, 2026 5:16 PM

Tags: attack, breach, data, data-breach, healthcare, identity, phishing

Xsolis confirmed a healthcare data breach affecting nearly 1.4 million people after a phishing attack exposed health and identity data. The post Healthcare Vendor Xsolis Reports Breach Affecting 1.4M People appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-xsolis-healthcare-data-breach/
Hackers Abuse Cloudflare-Hosted AWS Phishing Domains to Steal Console Logins

Jun 25, 2026 5:16 PM

Tags: credentials, cyber, email, hacker, login, mfa, phishing

A concise but sophisticated phishing campaign that targeted AWS console users by abusing Cloudflare-hosted domains to deliver adversary-in-the-middle (AiTM) credential theft. Each domain served an almost identical clone of the AWS console sign-in page and implemented a server-driven flow that dynamically branched into email, SMS, or authenticator-app MFA challenges, enabling real-time capture of second factors.…
ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories

Jun 25, 2026 5:16 PM

Tags: ai, crime, email, phishing

It’s dumb out there again.This week has the usual smell of prod on fire and nobody wanting to admit who left the door open, old creds still working, trusted apps doing sketchy crap, browser tricks jumping the fence, and “normal” workflows turning into phishing pipes because apparently email was not enough hell already.The worst part…
Klassische Cyberabwehr gegen autonome KI-Systeme stößt an ihre Grenzen Wenn Maschinen Maschinen kompromittieren

Jun 25, 2026 5:16 PM

Tags: ai, phishing

Die nächste große Sicherheitskrise wird nicht mit einem Klick beginnen. Nicht mit einer Phishing-Mail. Nicht mit einem kompromittierten Passwort. Nicht mit einem Mitarbeiter, der einen Fehler macht. Die nächste große Sicherheitskrise beginnt mit Maschinen, die selbstständig handeln. Genau das erleben Unternehmen derzeit. KI-Assistenten schreiben Code. Sie installieren Software. Sie analysieren Daten. Sie treffen Entscheidungen. Immer…
EvilTokens phishing service scales attacks 1,380% with AI integration

Jun 25, 2026 5:16 PM

Tags: ai, attack, phishing, service

First seen on scworld.com Jump to article: www.scworld.com/brief/eviltokens-phishing-service-scales-attacks-1380-with-ai-integration
Russia’s Gamaredon Adapts Tactics to Target Ukraine

Jun 25, 2026 5:16 PM

Tags: cloud, data, espionage, infrastructure, malware, phishing, russia, spear-phishing, tactics, ukraine

Eset Documents New Malware Families and Infrastructure Tactics. Eset found Russia’s FSB-linked Gamaredon expanded its malware toolkit, launched dozens of spear-phishing campaigns, and increasingly relied on legitimate cloud, tunneling and social platforms to conceal C2 infrastructure, exfiltrate data and sustain espionage operations targeting Ukraine. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/russias-gamaredon-adapts-tactics-to-target-ukraine-a-32068
AI-Powered Phishing Attacks Surge 1,380% as Criminal Platforms Render MFA Obsolete

Jun 24, 2026 6:34 PM

Tags: access, ai, attack, authentication, cybersecurity, email, login, mfa, microsoft, phishing

Imagine completing a two-factor authentication check on a real Microsoft login page and still handing a criminal full access to your email account. That is not a hypothetical. According to new research published this week by cybersecurity company Huntress, it happened across hundreds of organisations in the first four months of 2026 and the victims…
Algerian national accused of running cybercrime marketplaces extradited to US

Jun 24, 2026 4:34 PM

Tags: cybercrime, finance, fraud, marketplace, phishing, tool

An Algerian national accused of running online marketplaces that sold phishing kits and fraud tools has been extradited from Spain to the United States to face bank fraud … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/24/algerian-cybercrime-marketplace-operator-extradited-to-us/
Phishing attack on healthcare firm Xsolis impacts 1.4 million people

Jun 24, 2026 2:34 PM

Tags: access, ai, attack, healthcare, phishing, software, technology, unauthorized

Healthcare technology company Xsolis confirmed that a phishing attack resulted in unauthorized access to its network. The company develops AI-powered software for hospitals, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/24/xsolis-data-breach-phishing-attack/
Hackers Use Microsoft Teams-Themed Lures to Deploy Legitimate Remote Access Software

Jun 24, 2026 2:34 PM

Tags: access, cyber, hacker, microsoft, phishing, software, tool, unauthorized

An active phishing campaign that impersonates Microsoft Teams to trick victims into downloading a legitimately signed remote access tool (RAT) preconfigured for unauthorized access. Attackers deliver Teams-themed lures notifications about meeting transcripts, missed recordings, or “download transcript” prompts linking to convincing landing pages that mimic collaboration and productivity services. The offered downloads are pitched as…