Collecting Cyber-News from over 60 sources

Tag: phishing

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

Jun 18, 2026 6:34 PM

Tags: ai, attack, cloud, data-breach, Internet, macOS, malware, phishing, scam

The internet did not break this week. It got used exactly as designed, which is worse.Searches were siphoned through shady browser add-ons. AI chat links turned into malware delivery paths. macOS attacks ran in memory and left almost nothing behind. Cloud agents looked like helpers until attackers treated them like open shells.Add exposed edge gear,…
Urlaubs-Phishing: Wenn Cyberkriminelle Ihre Reisedaten kennen

Jun 18, 2026 2:34 PM

Tags: cyberattack, hacker, phishing

Gezieltes Urlaubs-Phishing mit neuer Qualität Zutreffende persönliche Reisedaten erhöhen die Glaubwürdigkeit von WhatsApp-Phishing-Kampagnen. Hacker schalten sich in Booking.com-interne Kommunikation ein, um Daten zu erbeuten. Reisedaten von Anwendern sind lohnende Informationen für Cyberkriminelle. Bereits mit jeder Vorurlaubssaison starten Phishing-Kriminelle ihre Angriffe auf erholungssuchende und urlaubsplanende Verbraucher. Die Bitdefender Labs erkennen in ihrer aktuellen Analyse……
Smashing Security podcast #472: AI gets hacked, and BitLocker gets bypassed

Jun 18, 2026 2:34 PM

Tags: ai, password, phishing

What if your AI coding assistant could be tricked into stealing your own company’s secrets – by reading a single booby-trapped bug report? No phishing email. No malware. No password ever stolen. Just an AI doing exactly what it was told. First seen on grahamcluley.com Jump to article: grahamcluley.com/smashing-security-podcast-472/
FBI warns of sophisticated Kali365 phishing service targeting Microsoft accounts

Jun 18, 2026 2:34 PM

Tags: microsoft, phishing, service

First seen on scworld.com Jump to article: www.scworld.com/brief/fbi-warns-of-sophisticated-kali365-phishing-service-targeting-microsoft-accounts
Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments

Jun 17, 2026 9:02 PM

Tags: ai, crypto, github, phishing, threat, wordpress

An unknown threat actor has been observed leveraging paid or promoted posts on legitimate news websites to drum up buzz for their warez, according to new findings from Check Point Research.The threat actor also has at their disposal a dedicated WordPress phishing page that acts as the central hub, alongside GitHub and SourceForge projects promoted…
SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies

Jun 17, 2026 8:02 PM

Tags: ai, attack, cyber, data, data-breach, identity, intelligence, phishing, service, threat, usa

Austin, TX, USA, June 17th, 2026, CyberNewswire New SpyCloud research highlights the expansion of phishing attacks as AI and phishing-as-a-service fuel enterprise targeting. SpyCloud, the leader in identity threat protection, today released its 2026 Phishing Pulse Report, revealing that phishing attacks continue to increase in both volume and sophistication for enterprise organizations as artificial intelligence…
SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies

Jun 17, 2026 8:02 PM

Tags: ai, attack, cyber, data, data-breach, identity, intelligence, phishing, service, threat, usa

Austin, TX, USA, June 17th, 2026, CyberNewswire New SpyCloud research highlights the expansion of phishing attacks as AI and phishing-as-a-service fuel enterprise targeting. SpyCloud, the leader in identity threat protection, today released its 2026 Phishing Pulse Report, revealing that phishing attacks continue to increase in both volume and sophistication for enterprise organizations as artificial intelligence…
Gezieltes Urlaubs-Phishing in neuer Qualität

Jun 17, 2026 5:02 PM

Tags: access, cyberattack, germany, phishing

Bereits mit jeder Vorurlaubssaison starten Phishing-Kriminelle ihre Angriffe auf erholungssuchende und urlaubsplanende Verbraucher. Die Bitdefender Labs erkennen in ihrer aktuellen Analyse des Geschehens in über zehn Ländern einschließlich Deutschlands aber neue, besorgniserregende Trends: Whatsapp wird zum neuen Angriffsweg. Durch Zugriff auf die tatsächlichen Reisedaten der Opfer steigt die Glaubwürdigkeit krimineller Korrespondenzen. Gut organisierte […] First…
Why Account Takeovers Are Rising and How to Stop Them

Jun 17, 2026 5:02 PM

Tags: defense, mfa, phishing, software

Account takeovers are rising as attackers bypass traditional defenses through phishing, session hijacking, and MFA fatigue. Specops Software explores how device trust and continuous verification help reduce account takeover risk. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/why-account-takeovers-are-rising-and-how-to-stop-them/
Serverless Phishing Kit on GitHub Targets Mexican Banks

Jun 17, 2026 5:02 PM

Tags: api, banking, credentials, finance, github, phishing

GitBait phishing kit abuses GitHub Pages and the SheetBest API to steal Mexican banking credentials First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/gitbait-github-pages-sheetbest/
Künstliche Intelligenz wandelt Massenangriffe in Präzision

Jun 17, 2026 4:02 PM

Tags: access, ai, cyberattack, phishing

Während das Gesamtvolumen an Phishing-Angriffen im zweiten Jahr in Folge rückläufig ist, identifizierte ThreatLabz, die Forschungsabteilung von Zscaler, über 400.000 KI-generierte Webseiten, mit denen Angreifer realistische Phishing-Angriffe in großem Umfang durchführen können. Dies ist eine zentrale Erkenntnis des aktuellen, jährliche veröffentlichten <>. Basierend auf umfassenden Telemetriedaten zu Phishing-Aktivitäten, […] First seen on netzpalaver.de Jump to…
SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies

Jun 17, 2026 4:02 PM

Tags: attack, data, data-breach, phishing, usa

Austin, TX, USA, 17th June 2026, CyberNewswire First seen on hackread.com Jump to article: hackread.com/spycloud-report-finds-phishing-attacks-surge-as-employee-data-is-exposed-at-86-of-fortune-100-companies/
Modular Phishing Kit Uses GitHub Pages to Steal Payment Card Details and Passwords

Jun 17, 2026 4:02 PM

Tags: banking, credentials, cyber, data, github, password, phishing

A sophisticated, long-running phishing operation has evolved into a serverless, modular campaign that weaponizes GitHub Pages to harvest payment card data, credentials, and customer identifiers from banking customers in Mexico. The campaign’s architecture centers on a phishing kit containing a selector panel that operators use to generate institution-specific landing pages. Those landing pages impersonate at…
Passwörter sind out: Die Passkeys kommen

Jun 17, 2026 8:02 AM

Tags: passkey, password, phishing

Einfacher in der Nutzung und schwerer zu stehlen: Passkeys gelten immer stärker als sichere Alternative zu Passwort, Phishing und gestohlenen Zugangsdaten. Passwörter schützen Online-Konten seit Jahrzehnten, wurden aber nie für die Bedrohungslage entwickelt, mit der Nutzer heute konfrontiert sind. Phishing, gestohlene Zugangsdaten und die Wiederverwendung derselben Passwörter machen sie nach wie vor zu einer… First…
Product showcase: From phishing texts to risky Wi-Fi, Norton 360 Deluxe watches the gaps

Jun 17, 2026 8:02 AM

Tags: detection, phishing, privacy, scam, vpn, wifi

Norton 360 Deluxe combines device security, scam detection, web protection, and VPN privacy in a single subscription that covers up to five devices. It is available for … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/17/product-showcase-norton-360-deluxe/
Product showcase: From phishing texts to risky Wi-Fi, Norton 360 Deluxe watches the gaps

Jun 17, 2026 8:02 AM

Tags: detection, phishing, privacy, scam, vpn, wifi

Norton 360 Deluxe combines device security, scam detection, web protection, and VPN privacy in a single subscription that covers up to five devices. It is available for … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/17/product-showcase-norton-360-deluxe/
Infinite Campus: Salesforce Breach Exposed 137,000 Staff Records

Jun 17, 2026 5:02 AM

Tags: breach, data, data-breach, phishing, saas

Infinite Campus says a Salesforce breach exposed data tied to 137,000 school staff accounts, raising phishing and SaaS security concerns. The post Infinite Campus: Salesforce Breach Exposed 137,000 Staff Records appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-infinite-campus-salesforce-breach-school-staff-data/
Silent Ransom Group Targets US Legal Firms With Voice Phishing and Data Theft Extortion

Jun 16, 2026 4:01 PM

Tags: cyber, data, extortion, finance, group, office, phishing, ransom, service, social-engineering, theft, tool

A concentrated data theft extortion campaign by UNC3753 also reported as Luna Moth, Chatty Spider, and Silent Ransom Group targeting dozens of U.S. professional, legal, and financial services firms. The cluster’s hallmark is fast, human-centric intrusions that combine voice phishing (vishing), social engineering, abuse of legitimate remote support tools, and in some cases physical office…
Silent Ransom Group Targets US Legal Firms With Voice Phishing and Data Theft Extortion

Jun 16, 2026 4:01 PM

Tags: cyber, data, extortion, finance, group, office, phishing, ransom, service, social-engineering, theft, tool

A concentrated data theft extortion campaign by UNC3753 also reported as Luna Moth, Chatty Spider, and Silent Ransom Group targeting dozens of U.S. professional, legal, and financial services firms. The cluster’s hallmark is fast, human-centric intrusions that combine voice phishing (vishing), social engineering, abuse of legitimate remote support tools, and in some cases physical office…
DDoS, Phishing, Datenlecks – 123 Angriffe auf Schleswig-Holsteins IT

Jun 16, 2026 3:02 PM

Tags: cyberattack, data-breach, ddos, phishing

First seen on security-insider.de Jump to article: www.security-insider.de/cyberangriffe-schleswig-holstein-123-vorfaelle-seit-2022-a-6e56220d4f052c74f89742668261b619/
Ghostwriter APT Uses Fake Gmail Login Panels to Steal Passwords and 2FA Codes

Jun 16, 2026 1:01 PM

Tags: 2fa, apt, authentication, cyber, email, group, login, mfa, password, phishing

Ghostwriter (UNC1151) has escalated its long-standing phishing operations by deploying convincing fake Gmail login panels that harvest both passwords and two-factor authentication (2FA) codes, CERT Polska reports. The group historically focused on Polish email providers such as Onet, Wirtualna Polska and Interia shifted in March 2026 to high-volume Gmail-targeted campaigns. Attackers send professionally worded Polish-language…
Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

Jun 16, 2026 11:02 AM

Tags: attack, email, group, hacking, malware, microsoft, north-korea, phishing, spear-phishing

The North Korean state-sponsored hacking group known as ScarCruft (aka APT37) has been observed using spear-phishing messages impersonating Microsoft Account security notifications to deliver malware called NarwhalRAT.”The attack email contained a message impersonating an MS account security alert,” the Genians Security Center (GSC) said. “It was designed to create concern over possible First seen on…
Hackers Use The Quarry PhaaS Ecosystem to Target U.S. Victims With IRS Phishing

Jun 16, 2026 8:01 AM

Tags: cyber, hacker, phishing

A single developer-known online as RockyBelling has assembled a highly modular PhaaS/MaaS ecosystem that affiliates worldwide use to launch highly targeted IRS and SSA-themed phishing campaigns that predominantly hit U.S. victims. SOCRadar research spanning April 2025April 2026 ties almost 200 affiliates to a commercial toolkit that combines sophisticated cloaking, flexible payload options, real-time victim telemetry…
EvilTokens: Neue Phishing-Kampagne verschafft sich Zugriff mit legitimen Mitteln

Jun 16, 2026 8:01 AM

Tags: access, cyberattack, infrastructure, phishing

Was passiert, wenn bei einem Phishing-Angriff offizielle Infrastruktur genutzt wird, anstatt diese zu fälschen? EvilTokens markiert eine Weiterentwicklung des Phishing: Es werden nicht mehr Anmeldedaten gestohlen, sondern die Opfer dazu verleitet, legitime Sitzungen zu autorisieren. First seen on welivesecurity.com Jump to article: www.welivesecurity.com/de/cybercrime/eviltokens-neue-phishing-kampagne-verschafft-sich-zugriff-mit-legitimen-mitteln/
EvilTokens: Neue Phishing-Kampagne verschafft sich Zugriff mit legitimen Mitteln

Jun 16, 2026 8:01 AM

Tags: access, cyberattack, infrastructure, phishing

Was passiert, wenn bei einem Phishing-Angriff offizielle Infrastruktur genutzt wird, anstatt diese zu fälschen? EvilTokens markiert eine Weiterentwicklung des Phishing: Es werden nicht mehr Anmeldedaten gestohlen, sondern die Opfer dazu verleitet, legitime Sitzungen zu autorisieren. First seen on welivesecurity.com Jump to article: www.welivesecurity.com/de/cybercrime/eviltokens-neue-phishing-kampagne-verschafft-sich-zugriff-mit-legitimen-mitteln/
North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Jun 15, 2026 10:01 PM

Tags: cyber, cybersecurity, hacker, malicious, malware, north-korea, phishing, threat, tool

Cybersecurity researchers have flagged two malicious cyber campaigns that exhibit similarities with a persistent North Korean threat cluster known as Contagious Interview (aka Famous Chollima, HexagonalRodent, and Void Dokkaebi).According to a report published by Proofpoint, the threat actor has been found orchestrating phishing campaigns using developer role recruitment or code review themes First seen on…
One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

Jun 15, 2026 7:01 PM

Tags: email, flaw, mfa, microsoft, phishing, threat, tool

A single click on a trusted Microsoft link could have let an attacker pull emails, calendar details, and indexed files out of Microsoft 365 Copilot Enterprise Search.Researchers at Varonis Threat Labs chained three bugs into a one-click exfiltration path they call SearchLeak. Because the link pointed to a real microsoft.com domain, traditional anti-phishing and URL…
âš¡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

Jun 15, 2026 6:02 PM

Tags: ai, browser, chrome, cybersecurity, exploit, flaw, login, macOS, phishing, software, tool, vpn, zero-day

Stuff broke again. Not in a movie way. An old tool was left exposed. An abandoned package was abused. A deprecated feature was still running in prod.This week is the same lesson in a new form: phishing kits are easier to rent, AI names are useful bait, old login paths still fail, and forgotten software…
Payroll Pirate Campaign Uses AiTM Session Hijacking to Bypass MFA and Redirect Salaries

Jun 15, 2026 4:01 PM

Tags: authentication, credentials, cyber, mfa, phishing, theft

A financially motivated campaign dubbed >>Payroll Pirate<< has emerged using advanced phishing and adversary-in-the-middle (AiTM) session hijacking to bypass multifactor authentication (MFA) and reroute payroll disbursements. This operation targets payroll and HR portals at mid-market and enterprise organizations, chaining credential theft, real-time session interception, and subtle profile changes to siphon funds without triggering conventional alarms.…
Webinar: How behavioral AI stops phishing and account takeovers

Jun 15, 2026 3:01 PM

Tags: ai, attack, defense, detection, email, phishing

Modern phishing, BEC, and account takeover attacks increasingly bypass traditional email defenses and create operational strain for security teams. This webinar explores how behavioral AI can help automate detection, investigation, and remediation to reduce alert fatigue and accelerate response times. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/webinar-how-behavioral-ai-stops-phishing-and-account-takeovers/