Tag: phishing

Cyber defense: From reactive to proactive

Feb 24, 2026 9:02 PM

Tags: access, ai, attack, automation, business, cloud, control, corporate, cyber, cybercrime, cybersecurity, data, deep-fake, defense, detection, endpoint, google, infrastructure, intelligence, malware, microsoft, monitoring, phishing, ransomware, resilience, risk, service, social-engineering, threat

“It’s a cat-and-mouse situation. AI is changing the speed and sophistication of attacks, and AI is making phishing and social engineering attacks, thanks to deep fakes, harder to detect,” said Kevin McCall, director, cybersecurity, risk, and regulatory at PwC US, speaking during a webcast titled, “From Risk to Resilience: Building a Smarter Cloud Security Strategy.”McCall…
Multifaceted Phishing Scheme Deceives Bitpanda Customers

Feb 24, 2026 6:00 PM

Tags: attack, credentials, phishing

Phishing attack mimicking Bitpanda targets users, harvesting credentials and personal information First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/bitpanda-mfa-phishing-scheme/
Phishing-Kampagne missbraucht Google Tasks für Unternehmenszugänge

Feb 24, 2026 5:02 PM

Tags: google, kaspersky, phishing

Wie das Sicherheitsunternehmen Kaspersky berichtet, missbrauchen Angreifer das Benachrichtigungssystem von Google Tasks, um an Zugangsdaten von Unternehmensaccounts zu gelangen. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/phishing-google-tasks
Autonomer KI-Agent für das Human-Risk-Management

Feb 24, 2026 5:02 PM

Tags: ai, awareness, defense, intelligence, phishing, risk, risk-management

KnowBe4 führt AIDA-Orchestration ein. Dabei handelt es sich um den achten KI-gestützten Agenten in der KnowBe4-Suite, bekannt als AIDA (Artificial-Intelligence-Defense-Agents). Der AIDA-Orchestration-Agent ist ein autonomes, KI-gestütztes System für das Human-Risk-Management. Er erstellt, plant und verwaltet unabhängig personalisierte Phishing-Sicherheitstests und Security-Awareness-Trainings auf Benutzerebene, die sich dynamisch an das Risikoprofil jeder Person anpassen. Dadurch entfallen manuelle Kampagnen,…
Master Your Passwordless Future: Introducing Thales Authenticator Lifecycle Manager

Feb 24, 2026 10:01 AM

Tags: access, attack, authentication, automation, breach, compliance, container, control, data, fido, Hardware, identity, login, msp, phishing, service, software, tool, zero-trust

Master Your Passwordless Future: Introducing Thales Authenticator Lifecycle Manager madhav Tue, 02/24/2026 – 07:53 The move to passwordless authentication is no longer a distant goal; it’s a present-day necessity. Organizations are rapidly adopting FIDO2 authenticators to defend against phishing and strengthen their security posture. While this shift enhances security, it introduces a new challenge: managing…
AI is becoming part of everyday criminal workflows

Feb 24, 2026 9:02 AM

Tags: ai, email, phishing, social-engineering

Underground forums include long threads about chatbots drafting phishing emails, generating code snippets, and coaching social engineering calls. A new study examined … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/24/ai-in-cybercrime-research/
The rise of the evasive adversary

Feb 24, 2026 8:01 AM

Tags: access, ai, attack, authentication, breach, china, cloud, credentials, crime, crowdstrike, crypto, data, defense, endpoint, exploit, finance, firewall, group, identity, infrastructure, intelligence, korea, lazarus, leak, mail, malicious, malware, microsoft, monitoring, network, north-korea, open-source, phishing, ransomware, remote-code-execution, russia, saas, service, software, strategy, supply-chain, tactics, theft, threat, tool, update, vpn, vulnerability, windows, zero-day

Big game hunters tighten their grip: CrowdStrike’s research highlights how big game hunting (BGH) ransomware actors have remained the dominant force in the eCrime landscape.Punk Spider, a group responsible for developing and maintaining Russian-language Akira ransomware, and its associated Akira dedicated leak site, conducted 198 intrusions in 2025, a 134% increase year over year. Victim-shaming operations…
Inside Attacker’s Defensive Funnel: How Sneaky 2FA Cloaks Itself from Security Scanners Blog – Menlo Security

Feb 23, 2026 11:00 PM

Tags: 2fa, mfa, microsoft, phishing

Learn how Menlo Security identified a massive Sneaky 2FA phishing campaign using 3.4K domains to bypass Microsoft 365 MFA and steal session cookies. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/inside-attackers-defensive-funnel-how-sneaky-2fa-cloaks-itself-from-security-scanners-blog-menlo-security/
Ad tech firm Optimizely confirms data breach after vishing attack

Feb 23, 2026 8:01 PM

Tags: attack, breach, data, data-breach, phishing, threat

New York-based ad tech company Optimizely has notified an undisclosed number of customers of a data breach after threat actors compromised some of its systems in a voice phishing attack. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ad-tech-firm-optimizely-confirms-data-breach-after-vishing-attack/
Over 200K Australian Driver’s Licences Exposed in youX Cyber Breach

Feb 23, 2026 7:01 PM

Tags: breach, cyber, data, data-breach, fraud, phishing

A youX breach exposed sensitive borrower data in Australia, including over 200,000 driver’s licence numbers, raising fraud and phishing risks. The post Over 200K Australian Driver’s Licences Exposed in youX Cyber Breach appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-youx-data-breach-australia-drivers-licence-exposure/
Hacker stiehlt Daten von Tausenden RTL-Mitarbeitern

Feb 23, 2026 2:00 PM

Tags: access, cyberattack, dark-web, group, hacker, mail, phishing, social-engineering

Ein Hacker hat sich Zugriff auf Mitarbeiterdaten von RTL verschafft.Die RTL Group wurde offenbar Opfer einer Cyberattacke. Wie Cybernews berichtet, brüstet sich ein Cyberkrimineller namens LuneBF mit gestohlenen Daten von mehr als 27.000 Mitarbeitern der Mediengruppe. In seinem Darknet-Post behauptet der Angreifer, sich Zugriff auf die Intranet-Website der RTL Group verschafft zu haben.Als Beweis für…
Phishing-Kampagne umgeht Multi-Faktor-Authentifizierung von Microsoft 365

Feb 23, 2026 2:00 PM

Tags: authentication, cyberattack, mfa, microsoft, password, phishing, threat

KnowBe4 Threat Labs hat eine komplexe Phishing-Kampagne entdeckt, die auf US-amerikanische Unternehmen und Fachkräfte abzielt. Die Angriffe kompromittieren Microsoft-365-Konten (Outlook, Teams, Onedrive), indem sie den OAuth-2.0-Geräteautorisierungsfluss missbrauchen und dadurch selbst starke Passwörter und Multi-Faktor-Authentifizierung (MFA) überlisten. Das Opfer wird auf das legitime Microsoft-Portal ‘https://microsoft.com/devicelogin” weitergeleitet, um einen vom Angreifer bereitgestellten Gerätecode einzugeben. Durch die Eingabe…
Hackers Use Excel Exploit to Hide XWorm 7.2 in JPEG Files, Hijack PCs

Feb 23, 2026 2:00 PM

Tags: encryption, exploit, hacker, malicious, malware, password, phishing, wifi, windows

A new phishing campaign is spreading XWorm 7.2 via malicious Excel files, hiding the malware in Windows processes, and using AES encryption to steal passwords and Wi-Fi keys. First seen on hackread.com Jump to article: hackread.com/hackers-excel-exploit-xworm-7-2-jpeg-files-hijack-pcs/
Phishing-Kampagne umgeht mit Gerätecode-Hijacking die MFA von MS365

Feb 23, 2026 2:00 PM

Tags: mfa, phishing

Angesichts sich rasch entwickelnder Taktiken wie dieser OAuth-Token-Diebstahlkampagne reicht ein passiver Sicherheitsansatz für Sicherheitsteams nicht mehr aus. Die Tatsache, dass Angreifer legitime Domains nutzen und MFA umgehen können, zeigt, dass herkömmliche Perimeter-Abwehrmaßnahmen und einfache Anmeldedatenprüfungen nicht ausreichen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/phishing-kampagne-umgeht-mit-geraetecode-hijacking-die-mfa-von-ms365/a43796/
Starkiller Phishing Kit Clones Real Login Pages to Evade MFA Protections

Feb 23, 2026 1:01 PM

Tags: authentication, credentials, cyber, framework, login, mfa, phishing, theft, update

New phishing framework Starkiller is enabling more convincing, scalable credential theft by proxying real login pages and bypassing multi-factor authentication (MFA), significantly raising the bar for defenders. Traditional phishing kits typically serve static HTML clones of popular login portals, which quickly become outdated when brands update their interfaces, creating telltale visual discrepancies. Starkiller takes a…
Police seize 100,000 stolen Facebook credentials in cybercrime raid

Feb 23, 2026 12:01 PM

Tags: breach, credentials, cybercrime, group, organized, phishing

Officers from Poland’s Central Bureau for Combating Cybercrime (CBZC) dismantled an organized group that used phishing to seize Facebook accounts and extract BLIK payment … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/23/poland-cybercrime-facebook-phishing-ring/
13 ways attackers use generative AI to exploit your systems

Feb 23, 2026 9:01 AM

Tags: access, ai, attack, authentication, awareness, breach, captcha, ceo, chatgpt, ciso, cloud, credentials, crypto, cyber, cyberattack, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, detection, email, espionage, exploit, extortion, finance, flaw, framework, fraud, google, government, group, hacker, identity, infrastructure, intelligence, law, LLM, login, malicious, malware, marketplace, network, open-source, password, phishing, privacy, ransomware, resilience, risk, saas, scam, service, social-engineering, startup, supply-chain, tactics, technology, theft, threat, tool, vulnerability, zero-day

Facilitating malware development: AI can also be used to generate more sophisticated, or less labour-intensive, malware.For example, cybercriminals are using gen AI to create malicious HTML documents. The XWorm attack, initiated by HTML smuggling, which contains malicious code that downloads and runs the malware, bears the hallmarks of development via AI.”The loader’s detailed line-by-line description…
13 ways attackers use generative AI to exploit your systems

Feb 23, 2026 9:01 AM

Tags: access, ai, attack, authentication, awareness, breach, captcha, ceo, chatgpt, ciso, cloud, credentials, crypto, cyber, cyberattack, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, detection, email, espionage, exploit, extortion, finance, flaw, framework, fraud, google, government, group, hacker, identity, infrastructure, intelligence, law, LLM, login, malicious, malware, marketplace, network, open-source, password, phishing, privacy, ransomware, resilience, risk, saas, scam, service, social-engineering, startup, supply-chain, tactics, technology, theft, threat, tool, vulnerability, zero-day

Facilitating malware development: AI can also be used to generate more sophisticated, or less labour-intensive, malware.For example, cybercriminals are using gen AI to create malicious HTML documents. The XWorm attack, initiated by HTML smuggling, which contains malicious code that downloads and runs the malware, bears the hallmarks of development via AI.”The loader’s detailed line-by-line description…
‘Starkiller’ Phishing Service Proxies Real Login Pages, MFA

Feb 21, 2026 1:02 PM

Tags: authentication, login, mfa, password, phishing, service

Most phishing websites are little more than static copies of login pages for popular online destinations, and they are often quickly taken down by anti-abuse activists and security firms. But a stealthy new phishing-as-a-service offering lets customers sidestep both of these pitfalls: It uses cleverly disguised links to load the target brand’s real website, and…
Vishing: Gezielte Cyberangriffe in Echtzeit mittels neuartiger VoiceKits

Feb 21, 2026 5:01 AM

Tags: cyberattack, phishing

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/vishing-gezielt-cyberangriffe-echtzeit-neu-voice-phishing-kits
Neuartige VoiceKits hebeln MFA in Echtzeit aus

Feb 20, 2026 4:01 PM

Tags: cyberattack, mfa, phishing, tool

neuartige Voice-Phishing-Kits, die selbst unerfahrenen Cyberkriminellen hochkomplexe und individuell zugeschnittene Vishing-Angriffe ermöglichen. Besonders brisant: Mit diesen Tools lassen sich sogar Multi-Faktor-Authentifizierungen (MFA) in Echtzeit umgehen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/neuartige-voice-phishing-kits-hebeln-mfa-in-echtzeit-aus/a43776/
KI und Komplexität als Brandbeschleuniger für Cyberkriminelle

Feb 20, 2026 3:01 PM

Tags: access, ai, api, authentication, automation, ciso, cloud, cyberattack, cyersecurity, exploit, incident response, intelligence, network, phishing, saas, service, siem, soar, soc, social-engineering, tool, vulnerability

Cyberangriffe werden immer schneller, wodurch sich die Zeitspanne zwischen der ersten Kompromittierung und den negativen Folgen verkürzt.Der Einzug von KI hat den benötigten Zeitaufwand für Cyberattacken massiv verkürzt, so dass menschliche Verteidiger nicht mehr mithalten können. So lautet das vielleicht wenig überraschende Ergebnis des 2026 Global Incident Response Report von Palo Alto Networks. Für die…
PayPal launches latest struggle to get rid of SMS for MFA

Feb 20, 2026 9:01 AM

Tags: authentication, ceo, ciso, communications, compliance, cybersecurity, email, finance, fraud, government, group, login, mfa, mobile, nfc, passkey, password, phishing, risk, service, strategy, switch, update

Muddled effort, mixed messages Flavio Villanustre, CISO for the LexisNexis Risk Solutions Group, says he’s “always found it odd” that PayPal still supports SMS as its primary secondary authentication factor.”Everyone in financial services and government has abandoned it for not being sufficiently secure and are moving to even phishing-resistant authentication, such as passkeys, Yubikeys,” he…
Ongoing Campaign Targets Microsoft 365 to Steal OAuth Tokens for Persistent Access

Feb 20, 2026 8:01 AM

Tags: access, attack, cyber, exploit, microsoft, phishing, technology, unauthorized, usa

A new phishing campaign exploiting Microsoft’s OAuth 2.0 Device Authorization Grant flow to gain unauthorized and persistent access to Microsoft 365 accounts. The sophisticated attack active since December 2025 specifically targets professionals and enterprises in North America, with over 44% of identified victims based in the United States. Sectors hit hardest include technology, manufacturing, and…
ESicherheit ganzheitlich denken Prävention statt Schadenbegrenzung

Feb 20, 2026 5:01 AM

Tags: mail, phishing, ransomware

Phishing, Identitätsmissbrauch und Ransomware beginnen häufig mit einer einzigen E-Mail. Warum technische Grundlagen, organisatorische Klarheit und kontinuierliche Sensibilisierung zusammengehören und weshalb Prävention der wirksamste Schutz ist. E-Mails bilden seit Jahrzehnten das Rückgrat der digitalen Kommunikation und sind aus unserem beruflichen wie privaten Alltag nicht mehr wegzudenken. Sie verbinden Unternehmen, Behörden und Privatpersonen über… First seen…
New phishing campaign tricks employees into bypassing Microsoft 365 MFA

Feb 20, 2026 5:01 AM

Tags: access, attack, awareness, business, credentials, defense, email, google, identity, incident response, least-privilege, login, malicious, mfa, microsoft, monitoring, office, phishing, risk, saas, social-engineering, training

microsoft.com. But the attacker has pre-registered their device to get the code for [the victim] to verify.”David Shipley, head of Canadian security awareness training provider Beauceron Security, said OAuth device code attacks have been gaining steam since 2024. “It’s the natural evolutionary response to improvements in account security, particularly MFA”, he said. The easiest defense is…
BestClass ‘Starkiller’ Phishing Kit Bypasses MFA

Feb 20, 2026 12:00 AM

Tags: attack, login, mfa, phishing, tool

A user-friendly PhaaS tool beats standard methods for detecting phishing attacks by live-proxying legitimate login sites. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/starkiller-phishing-kit-mfa
Hackers target Microsoft Entra accounts in device code vishing attacks

Feb 19, 2026 2:01 PM

Tags: attack, finance, hacker, microsoft, phishing, technology, threat

Threat actors are targeting technology, manufacturing, and financial organizations in campaigns that combine device code phishing and voice phishing (vishing) to abuse the OAuth 2.0 Device Authorization flow and compromise Microsoft Entra accounts. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-target-microsoft-entra-accounts-in-device-code-vishing-attacks/
Starkiller: New ‘Commercial-Grade’ Phishing Kit Bypasses MFA

Feb 19, 2026 2:01 PM

Tags: cybercrime, infrastructure, mfa, phishing, service

A new cybercriminal toolkit uses proxies to mimic popular online services and represents a “significant escalation in phishing infrastructure,” warn researchers at Abnormal First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/starkiller-phishing-kit-bypasses/
Starkiller: New ‘Commercial-Grade’ Phishing Kit Bypasses MFA

Feb 19, 2026 2:01 PM

Tags: cybercrime, infrastructure, mfa, phishing, service

A new cybercriminal toolkit uses proxies to mimic popular online services and represents a “significant escalation in phishing infrastructure,” warn researchers at Abnormal First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/starkiller-phishing-kit-bypasses/