Tag: phishing

Cybersicherheit braucht Reife und keine Checklisten

Feb 19, 2026 12:01 PM

Tags: ciso, compliance, cyersecurity, governance, phishing, resilience, risk

Wenn CISOs stärkere Programme, bessere Widerstandsfähigkeit und eine sicherere Zukunft wollen, müssen sie ihren Ansatz weiterentwickeln.Cybersicherheit wird oft wie ein Spiel behandelt. Unternehmen jagen schnellen Erfolgen hinterher, haken Compliance-Listen ab oder klopfen sich nach einem einzigen erfolgreichen Audit selbst auf die Schulter. Auf dem Papier mag das produktiv aussehen, aber in Wirklichkeit schafft es ein…
Threat Actors Using Fake Google Forms Site to Harvest Google Logins

Feb 19, 2026 11:01 AM

Tags: cyber, cybercrime, exploit, google, jobs, login, malicious, phishing, threat

A new phishing campaign in which threat actors are using a convincing fake version of Google Forms to steal Google account credentials. Cybercriminals are once again exploiting a trusted brand Google to trick job seekers and steal their credentials. The campaign’s malicious URLs all followed a similar structure: forms.google.ss-o[.]com/forms/d/e/{unique_id}/viewform?form=opportunitysecpromo= At first glance, these links appear…
Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via DNS

Feb 19, 2026 10:01 AM

Tags: cyber, dns, email, hacker, malicious, malware, phishing, social-engineering, tool

Social engineering campaigns are becoming increasingly sophisticated, moving beyond simple phishing emails to more complex technical deceptions. The >>ClickFix<>fix<< a fake browser error, has undergone significant evolution. Security researcher Muhammad Hassoub has observed attackers moving away from high-noise tools that trigger immediate […] The post Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via…
Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via DNS

Feb 19, 2026 10:01 AM

Tags: cyber, dns, email, hacker, malicious, malware, phishing, social-engineering, tool

Social engineering campaigns are becoming increasingly sophisticated, moving beyond simple phishing emails to more complex technical deceptions. The >>ClickFix<>fix<< a fake browser error, has undergone significant evolution. Security researcher Muhammad Hassoub has observed attackers moving away from high-noise tools that trigger immediate […] The post Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via…
Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via DNS

Feb 19, 2026 10:01 AM

Tags: cyber, dns, email, hacker, malicious, malware, phishing, social-engineering, tool

Social engineering campaigns are becoming increasingly sophisticated, moving beyond simple phishing emails to more complex technical deceptions. The >>ClickFix<>fix<< a fake browser error, has undergone significant evolution. Security researcher Muhammad Hassoub has observed attackers moving away from high-noise tools that trigger immediate […] The post Hackers Abuse nslookup.exe in ClickFix Campaign to Deliver Malware via…
Betterment data breach might be worse than we thought

Feb 18, 2026 10:01 PM

Tags: breach, data, data-breach, finance, phishing

This breach now appears far more serious. The leaked data includes rich personal and financial details that phishers could use. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/betterment-data-breach-might-be-worse-than-we-thought/
Booking.com Phishing Campaign Hijacks Hotel Accounts to Defraud Guests

Feb 18, 2026 6:58 PM

Tags: phishing

A multi-stage Booking.com phishing campaign is hijacking hotel accounts to defraud guests through convincing payment scams. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/booking-com-phishing-campaign-hijacks-hotel-accounts-to-defraud-guests/
Anti-phishing rules mistakenly blocked emails, Teams messages

Feb 18, 2026 5:58 PM

Tags: credentials, detection, email, microsoft, phishing

Microsoft says an Exchange Online issue that mistakenly quarantined legitimate emails last week was triggered by faulty heuristic detection rules designed to block credential phishing campaigns. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-anti-phishing-rules-mistakenly-blocked-emails-teams-messages/
Job scam uses fake Google Forms site to harvest Google logins

Feb 18, 2026 2:58 PM

Tags: google, jobs, login, phishing, scam

Phishers are using fake Google Forms pages hosted on lookalike domains to trick job seekers into handing over their Google credentials. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/job-scam-uses-fake-google-forms-site-to-harvest-google-logins/
EdTech Magazine – What Minimum Viable Cybersecurity Looks Like for K12 Districts

Feb 18, 2026 2:58 PM

Tags: attack, cybersecurity, defense, phishing, ransomware

This article was originally published in EdTech Magazine on 02/11/26 by Didi Gluck. As ransomware and phishing attacks grow more sophisticated, districts can’t rely on perimeter defenses alone. Cybersecurity has become a top priority for K12 districts, not just to keep students safe online but to ensure continuity across devices, systems and end user accounts.…
MetaMask Users Targeted by Phishing Emails with Fake Security Report to Bypass Detection

Feb 18, 2026 9:58 AM

Tags: attack, authentication, cyber, detection, email, login, mfa, phishing, social-engineering

A new phishing campaign is targeting MetaMask users with cleverly crafted emails designed to trick recipients into enabling a fake Two-Factor Authentication (2FA) setup. The lure includes a forged “security report” PDF meant to mimic a legitimate notification about unusual login activity, adding credibility and emotional urgency to the scam. The attack blends social engineering…
Phishing hat bei Cyberkriminellen weiter Hochkonjunktur

Feb 18, 2026 7:58 AM

Tags: cyberattack, phishing, vulnerability

Die Mechanik von Cyberangriffen verändert sich spürbar. Technische Schwachstellen spielen weiterhin eine Rolle, doch sie sind immer seltener der eigentliche Einstiegspunkt. Stattdessen rücken digitale Identitäten und vertrauensbasierte Kommunikation in den Mittelpunkt der Angriffe. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/phishing-hochkonjunktur
New Phishing Campaign Exploits Booking.com Partners, Targets Customers in Multi-Stage Fraud Scheme

Feb 18, 2026 7:58 AM

Tags: credentials, cyber, email, exploit, fraud, infrastructure, phishing, social-engineering

New phishing activity is again abusing the Booking.com ecosystem to defraud both hotel partners and their guests, using a coordinated multi”‘stage campaign that blends email, infrastructure abuse, and social engineering across email and WhatsApp. The primary objective is financial gain, using tailored phishing kits to first capture partner credentials and then harvest guest payment data. The operators…
Master XDR Investigations: A Deep Dive into the GravityZone XDR Demo Incident

Feb 18, 2026 7:58 AM

Tags: access, edr, exploit, phishing, supply-chain, vulnerability

<div cla An attacker’s initial access, whether through phishing, unmanaged devices, exploited vulnerabilities, or a compromised supply chain, marks the beginning of a dangerous chain of events. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/master-xdr-investigations-a-deep-dive-into-the-gravityzone-xdr-demo-incident/
Poorly crafted phishing campaign leverages bogus security incident report

Feb 17, 2026 2:58 PM

Tags: 2fa, phishing, security-incident

Attackers used a fake PDF incident report hosted on AWS to scare victims into enabling 2FA, though a poorly crafted phishing campaign. Freelance security consultant Xavier Mertens reported a phishing campaign using a fake PDF security incident report hosted on AWS to scare victims into enabling 2FA. The researchers pointed out that the campaign appears poorly…
QR Codes Exploited for Phishing Attacks and Malware Spread on Mobile Devices

Feb 17, 2026 8:58 AM

Tags: attack, cyber, exploit, malicious, malware, mobile, phishing, qr, threat

QR code abuse has become a significant mobile threat vector, with attackers using it to deliver phishing pages, trigger in”‘app account takeovers, and distribute malicious applications outside official app stores. Because people routinely scan QR codes for payments, menus and app downloads, these attacks often bypass enterprise protections by shifting the interaction onto less”‘protected personal…
CISO Julie Chatman offers insights for you to take control of your security leadership role

Feb 17, 2026 5:58 AM

Tags: access, ai, attack, awareness, breach, business, ciso, control, crowdstrike, cyber, cybersecurity, deep-fake, email, finance, firewall, government, healthcare, infrastructure, law, military, office, phishing, risk, service, skills, supply-chain, technology, threat, training, update

First, the hopes-and-dreams budget: What would it take to close all the known gaps and operate proactively?Second, the could-live-with-this budget: What’s realistic and gets you to acceptable risk levels?Third, the I-think-I’m-going-to-resign budget: Because you can see a breach coming and you don’t want your name attached to it.You probably won’t end up at that last…
CISO Julie Chatman offers insights for you to take control of your security leadership role

Feb 17, 2026 5:58 AM

Tags: access, ai, attack, awareness, breach, business, ciso, control, crowdstrike, cyber, cybersecurity, deep-fake, email, finance, firewall, government, healthcare, infrastructure, law, military, office, phishing, risk, service, skills, supply-chain, technology, threat, training, update

First, the hopes-and-dreams budget: What would it take to close all the known gaps and operate proactively?Second, the could-live-with-this budget: What’s realistic and gets you to acceptable risk levels?Third, the I-think-I’m-going-to-resign budget: Because you can see a breach coming and you don’t want your name attached to it.You probably won’t end up at that last…
Operation DoppelBrand: Weaponizing Fortune 500 Brands

Feb 16, 2026 6:58 PM

Tags: access, credentials, finance, phishing, threat

GS7 targets US financial institutions, among others, with near-perfect imitations of phishing portals to steal credentials, paving the way for remote access and other threat activity First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/operation-doppelbrand-weaponizing-fortune-500-brands
Phishing Evolves Into Multi-Platform Fraud Systems

Feb 16, 2026 5:58 PM

Tags: ai, fraud, phishing, saas

Bolster AI finds phishing has evolved into scalable, multi-platform fraud that hides in search, ads, and SaaS workflows. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/phishing-evolves-into-multi-platform-fraud-systems/
Operation DoppelBrand Weaponizes Trusted Brands For Credential Theft

Feb 16, 2026 5:58 PM

Tags: credentials, finance, phishing, theft

New phishing campaign dubbed Operation DoppelBrand targeted major financial firms like Wells Fargo First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/operation-doppelbrand-trusted/
Noodlophile Malware Authors Use Fake Job Ads and Phishing Schemes to Evolve Tactics

Feb 16, 2026 2:58 PM

Tags: credentials, cyber, data, jobs, malicious, malware, metric, phishing, tactics

Hey folks in the threat”‘hunting world looks like our coverage of the Noodlophile infostealer has struck a nerve with its creators. The operators used inflated engagement metrics and fake popularity scores to lure victims into downloading malicious ZIP archives. Once executed, these payloads quietly harvested user credentials, crypto”‘wallet data, browser information, and more all exfiltrated through Telegram…
KI-gestütztes Phishing: Wie KI Phishing-Webseiten in Echtzeit erzeugt

Feb 16, 2026 1:58 PM

Tags: ai, cyberattack, phishing, risk

Es ist nur eine Frage der Zeit, bis reale Bedrohungsakteure diese Technik produktiv einsetzen. Der PoC macht deutlich, wie massiv KI das Risiko erfolgreicher Phishing-Angriffe erhöht. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/ki-gestuetztes-phishing-wie-ki-phishing-webseiten-in-echtzeit-erzeugt/a43742/
Finding a common language around risk

Feb 16, 2026 11:58 AM

Tags: ceo, cio, ciso, corporate, cyber, cybersecurity, defense, framework, governance, guide, intelligence, lessons-learned, metric, monitoring, phishing, ransomware, risk, risk-management, service, strategy, supply-chain, technology, threat, tool, training, update

Building one culture from three languages: The Organizational Risk Culture Standard (ORCS) offers something most frameworks miss: it treats culture as the foundation, not the afterthought. You can’t bolt culture onto existing processes and call it done. Culture is how people actually think about risk when no one is watching. It’s the shared beliefs that…
CISO Julie Chatman wants to help you take control of your security leadership role

Feb 16, 2026 9:58 AM

Tags: access, ai, attack, awareness, breach, business, ciso, control, crowdstrike, cyber, cybersecurity, deep-fake, email, finance, firewall, government, healthcare, infrastructure, law, military, office, phishing, risk, service, skills, supply-chain, technology, threat, training, update

First, the hopes-and-dreams budget: What would it take to close all the known gaps and operate proactively?Second, the could-live-with-this budget: What’s realistic and gets you to acceptable risk levels?Third, the I-think-I’m-going-to-resign budget: Because you can see a breach coming and you don’t want your name attached to it.You probably won’t end up at that last…
Security Affairs newsletter Round 563 by Pierluigi Paganini INTERNATIONAL EDITION

Feb 15, 2026 3:58 PM

Tags: attack, breach, cisa, data, data-breach, email, fintech, flaw, international, phishing, WeeklyReview

A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Fintech firm Figure disclosed data breach after employee phishing attack U.S. CISA adds a flaw in…
Fintech firm Figure disclosed data breach after employee phishing attack

Feb 14, 2026 6:58 PM

Tags: access, attack, blockchain, breach, data, data-breach, fintech, hacker, phishing, social-engineering

Fintech firm Figure confirmed a data breach after hackers used social engineering to trick an employee and steal a limited number of files. Blockchain-based lending firm Figure confirmed a data breach after an employee fell victim to a social engineering attack. According to a company spokesperson, the incident allowed hackers to access and steal a…
Phishing Campaigns Target Users with Fake Meeting Invites and Update Alerts via Zoom, Teams, and Google Meet

Feb 13, 2026 2:58 PM

Tags: access, attack, corporate, cyber, exploit, google, malicious, microsoft, monitoring, phishing, social-engineering, tool, update

An ongoing wave of phishing campaigns exploiting fake meeting invites from popular video conferencing platforms, including Zoom, Microsoft Teams, and Google Meet. The attacks use social engineering to lure corporate users into downloading malicious “software updates,” which are, in reality, digitally signed remote monitoring and management (RMM) tools that grant attackers full remote access to…
Google fears massive attempt to clone Gemini AI through model extraction

Feb 13, 2026 1:58 PM

Tags: access, ai, api, attack, china, ciso, cybercrime, cybersecurity, defense, exploit, google, government, group, hacker, intelligence, iran, jobs, korea, LLM, malicious, malware, north-korea, phishing, russia, service, social-engineering, threat, vulnerability

Nation-state groups used Gemini to accelerate attack operations: Google sees itself not just as a potential victim of AI cybercrime, but also an unwilling enabler. Its report documented how government-backed threat actors from China, Iran, North Korea, and Russia integrated Gemini into their operations in late 2025. The company said it disabled accounts and assets…
New XWorm RAT Campaign Leverages Phishing and CVE-2018-0802 Excel Exploit to Bypass Detection

Feb 13, 2026 10:58 AM

Tags: attack, control, cve, cyber, cybercrime, data, ddos, detection, exploit, marketplace, phishing, ransomware, rat, theft, windows

XWorm, a multi-functional .NET”‘based RAT first observed in 2022, remains actively traded across cybercrime marketplaces and continues to attract both low-skilled and advanced operators thanks to its rich feature set and plugin-based architecture. Once deployed, it enables full remote control of compromised Windows systems, including data theft, remote desktop control, DDoS attacks, and ransomware execution.…