Collecting Cyber-News from over 60 sources

Tag: phishing

PhishLumos: Exposing phishing campaigns that evade detection by hiding content

Jun 15, 2026 2:01 PM

Tags: cybersecurity, detection, phishing, threat

Phishing remains one of the most stubbornly persistent threats in cybersecurity: humans are tired, distracted, trusting, and susceptible to urgency and authority in ways that … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/15/phishlumos-phishing-campaign-detection/
Belarus-linked hackers target Gmail accounts of Polish public figures and their families

Jun 15, 2026 2:01 PM

Tags: group, hacker, phishing

Poland has warned that Ghostwriter, the Belarus-linked hacker group, has expanded its phishing operations to target personal Gmail accounts belonging to senior public figures and their relatives. First seen on therecord.media Jump to article: therecord.media/ghostwriter-targets-personal-gmail-accounts-in-poland
SearchJack Adware Campaign Exposes 758,000 Users to Privacy and Phishing Risks

Jun 15, 2026 1:01 PM

Tags: adware, browser, chrome, cyber, phishing, privacy, risk, tool

A coordinated campaign of 23 seemingly legitimate Chrome extensions tracked as >>SearchJack<< has quietly hijacked the default search settings of roughly 758,000 users, routing queries through operator-controlled monetization middleware before returning results. At first glance the extensions promise useful features satellite imagery, productivity tools, news readers, maps but their true purpose is affiliate search monetization,…
Google Sues Operators of AI-Powered ‘Outsider’ Phishing Kit Linked to 1.5 Million URLs

Jun 15, 2026 11:01 AM

Tags: ai, google, intelligence, phishing, tool

Google has launched a lawsuit against the operators behind the Outsider AI phishing kit. This alleged AI phishing kit, the company says, has been used to create convincing phishing websites using artificial intelligence tools, including Google’s Gemini. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/google-sues-outsider-ai-phishing-kit/
Interpol zerschlägt Phishing-Plattform Sniper Dz

Jun 15, 2026 10:02 AM

Tags: interpol, phishing

Interpol hat die Phishing-Plattform Sniper Dz abgeschaltet und 201 Verdächtige verhaftet. Die Gruppe erbeutete Daten von zehntausenden Opfern. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/interpol-zerschlaegt-phishing
APT37 Hackers Use NarwhalRAT Malware With MS-Themed Phishing and Dead-Drop C2

Jun 15, 2026 9:01 AM

Tags: backdoor, cyber, data, hacker, malicious, malware, microsoft, phishing, powershell, social-engineering, spear-phishing, theft

APT37 is using NarwhalRAT in a tightly engineered intrusion chain that starts with Microsoft-themed spear-phishing, pivots through malicious LNK files and PowerShell, and ends with a Python-based backdoor with dead-drop C2 via pCloud. The campaign is notable for its layered tradecraft: social engineering, LOLBin abuse, scheduled-task persistence, in-memory execution, and selective data theft are all…
FBI disrupts massive AI-powered phishing service using a million URLs

Jun 14, 2026 6:02 PM

Tags: ai, china, credit-card, data, google, phishing, service

In a coordinated effort, the FBI, working with Google and Black Lotus Labs, has dismantled a massive Chinese phishing-as-a-service operation called Outsider Enterprise with thousands of phishing websites used to steal credit card data and passwords. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-disrupts-massive-ai-powered-phishing-service-using-a-million-urls/
Chinesische PhaaS-Plattformen professionalisieren Phishing-Angriffe mit KI und Echtzeit-Tools

Jun 14, 2026 3:03 PM

Tags: ai, cyberattack, phishing, social-engineering, tool

Die Analyse zeigt deutlich: Technische Schutzmaßnahmen allein reichen nicht aus. Unternehmen müssen ihre Mitarbeitenden kontinuierlich über Phishing und Social Engineering aufklären. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/chinesische-phaas-plattformen-professionalisieren-phishing-angriffe-mit-ki-und-echtzeit-tools/a45489/
Wer hat die Kontrolle? Angreifer verwandeln legitime Remote-Zugriff-Tools in Einfallstore

Jun 14, 2026 6:01 AM

Tags: access, crypto, mail, phishing, tool

Angreifer nutzen Steuer-Phishing, vorgetäuschte Tools zur Wiederherstellung von Krypto-Wallets und gefälschte Audiodateien, um Kontrolle über PCs zu erlangen. Highlights: Angreifer missbrauchen legitime Remote-Zugriff-Tools, die über Phishing-E-Mails zum Steuerjahresende und gefälschte Downloads von Dating-Websites verbreitet werden, um dauerhafte Kontrolle über Geräte zu erlangen. Gefälschte Tools zur Wiederherstellung von Krypto-Wallets, werden zum Diebstahl von Anmeldedaten und……
New Agentjacking Attack Hijacks AI Coding Agents to Execute Malicious Code

Jun 13, 2026 12:02 PM

Tags: ai, attack, cyber, malicious, phishing, threat

A newly disclosed Agentjacking attack class can silently weaponize AI coding agents against the very developers who rely on them, requiring no phishing, no server compromise, and no user interaction beyond a developer’s normal workflow of asking their AI assistant to investigate errors. Tenet Security’s Threat Labs developed and validated the technique, demonstrating how a…
FBI takes down massive China-based cybercrime network that caused $1.9B in losses

Jun 13, 2026 1:02 AM

Tags: china, cybercrime, infrastructure, network, phishing, scam

Outsider provided phishing kits and infrastructure for cybercriminals to scam victims with lures claiming they missed packages, had unpaid tolls or parking violations. First seen on cyberscoop.com Jump to article: cyberscoop.com/outsider-cybercrime-network-takedown-china-fbi-google-lumen/
FBI takes down massive China-based cybercrime network that caused $1.9B in losses

Jun 13, 2026 1:02 AM

Tags: china, cybercrime, infrastructure, network, phishing, scam

Outsider provided phishing kits and infrastructure for cybercriminals to scam victims with lures claiming they missed packages, had unpaid tolls or parking violations. First seen on cyberscoop.com Jump to article: cyberscoop.com/outsider-cybercrime-network-takedown-china-fbi-google-lumen/
Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing

Jun 12, 2026 10:02 PM

Tags: ai, china, cybercrime, google, intelligence, network, phishing, service, smishing, software

Google on Friday said it’s pursuing legal action against a Chinese cybercrime network, accusing it of using its Gemini artificial intelligence (AI) agent to send phishing text messages targeting Americans.The network is said to be behind the development and management of a phishing-as-a-service (PhaaS) software kit called Outsider, per the tech giant.”The operation weaponized Gemini…
Google Sues Chinese Phishing Service Over Gemini Abuse

Jun 12, 2026 9:02 PM

Tags: china, credentials, finance, google, malicious, phishing, scam, service

Complaint Says Service Generated More Than 1.5 Million Malicious URLs. Google has sued a Chinese phishing-as-a-service provider accused of teaching customers to use Gemini to generate and customize scam websites, a campaign linked to more than 1.59 million phishing URLs, over 100,000 victims, and widespread credential and financial theft. First seen on govinfosecurity.com Jump to…
Google sues China-based scammers over Gemini AI abuse

Jun 12, 2026 4:02 PM

Tags: ai, china, cybercrime, google, network, phishing, scam, tool

Google has filed a lawsuit against Outsider Enterprise, a China-based cybercrime network for using AI tools, including Gemini, to build phishing websites and scam … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/12/google-china-based-cybercrime-network-lawsuit/
Cybercriminals are moving away from mass phishing campaigns

Jun 12, 2026 2:02 PM

Tags: cybercrime, phishing

Phishing activity declined by roughly 20% in both 2024 and 2025, according to research from Zscaler’s ThreatLabz team. The drop followed years of growth that pushed … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/12/zscaler-report-phishing-activity-trends/
Hackers Abuse NinjaOne RMM Agent to Gain Remote Access to Brazilian Organizations

Jun 12, 2026 2:02 PM

Tags: access, business, cyber, exploit, finance, hacker, malware, monitoring, phishing, social-engineering

An active phishing campaign that weaponizes a legitimate NinjaOne Remote Monitoring and Management (RMM) agent to gain persistent remote access to Brazilian organizations. Rather than relying on bespoke malware, the operators exploit familiar business workflows and Portuguese-language social engineering to trick finance, procurement, accounting and administrative staff into installing a digitally signed NinjaOne agent that…
INTERPOL Operation Takes Down Sniper Dz Phishing Platform, Arrests Administrator

Jun 12, 2026 1:02 PM

Tags: group, interpol, middle-east, phishing, service

An INTERPOL-led operation last month resulted in the disruption of Sniper Dz, a decade-long phishing-as-a-service (PhaaS) platform, Group-IB said Thursday.The effort, codenamed Operation Ramz, took place between October 2025 and February 2026, and saw authorities from 13 countries in the Middle East and North Africa (MENA) region making 201 arrests.Included among them was Guedz, the…
FIFA World Cup 2026 Scams: Fake Websites, Ticket Fraud, and Job Scams Already Active

Jun 12, 2026 11:02 AM

Tags: cybercrime, exploit, fraud, jobs, law, phishing, scam

The FIFA World Cup 2026 may not kick off until June 11, 2026, but cybercriminals have already begun exploiting anticipation surrounding the tournament. Security researchers and law enforcement agencies are warning that FIFA World Cup 2026 scams are actively targeting fans, job seekers, and businesses through fake websites, phishing campaigns, and fraudulent online services. First seen on…
Phishing und Ticketbetrug zur WM 2026 – Betrugsnetzwerk Ghost-Stadium zielt mit 4.300 Domains auf WM-Fans

Jun 12, 2026 9:02 AM

Tags: phishing

First seen on security-insider.de Jump to article: www.security-insider.de/betrugsnetzwerk-ghost-stadium-wm-2026-phishing-a-9fd260afe93fd91c188fcf0a026fc6c9/
Phishing Attack Volume Down 20%, but Risk Still Rising

Jun 11, 2026 10:02 PM

Tags: ai, attack, hacker, phishing, risk

Hackers are valuing quality over quantity, using AI to upgrade their phishing attacks rather than multiplying them. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-analytics/phishing-volume-down-20-risk-rising
Phishing mittels Kalendereinladung

Jun 11, 2026 7:02 PM

Tags: mail, phishing, threat

Angreifer nutzen zunehmend Kalendereinladungen, um E-Mail-Sicherheitsmaßnahmen zu umgehen. Dieser Angriffsvektor hat in den letzten sechs Monaten um 49 Prozent zugenommen. Das Threat-Labs-Team von KnowBe4 wirft einen Blick hinter die Kulissen und liefert eine detaillierte Analyse. Sie beleuchten die technischen Grundlagen und taktischen Veränderungen von Multi-Vektor-Angriffen, die auf den Kalender abzielen. Modernes Phishing geht inzwischen weit…
Decade-Long SniperDz Phishing Network Disrupted in Operation Ramz

Jun 11, 2026 7:02 PM

Tags: credentials, group, interpol, network, phishing

Group-IB, INTERPOL and Algerian Police dismantle decade-old SniperDZ phishing network used to steal credentials, with its alleged developer arrested. First seen on hackread.com Jump to article: hackread.com/authorities-dismantle-sniperdz-phishing-network/
Hackers Exploit SniperDz PhaaS for Brand Spoofing and Browser Hijacking

Jun 11, 2026 3:02 PM

Tags: cyber, data, exploit, fraud, government, hacker, middle-east, mobile, phishing, scam, service

A wave of phishing campaigns across the Middle East and North Africa exposes a sophisticated, centralized fraud ecosystem operating under the SniperDz banner. What initially appeared as isolated Facebook and Instagram scams fake offers for free mobile data, government subsidies, and compensation are linked to a turnkey Push-Notification-as-a-Service (PNaaS) and Phishing-as-a-Service (PhaaS) affiliate platform that…
Interpol Dismantles SniperDz Phishing-as-a-Service Platform

Jun 11, 2026 2:02 PM

Tags: group, interpol, phishing, service

New revelations by Group-IB expose the full scale of the decade-old SniperDz phishing operation First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/interpol-dismantles-sniperdz/
Identity Scams Evolve Into Multi-Stage Attacks

Jun 9, 2026 3:42 PM

Tags: ai, attack, fraud, identity, phishing, scam, theft

Victims Increasingly Face Multiple Compromises From a Single Incident. Identity theft scams are increasingly unfolding as coordinated, AI-assisted attack chains that begin with phishing or impersonation escalate into account takeovers, device compromise and broader fraud, according to the Identity Theft Resource Center. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/identity-scams-evolve-into-multi-stage-attacks-a-31918
New BitB Phishing Attack Targets Microsoft 365 Logins

Jun 9, 2026 2:42 PM

Tags: attack, credentials, cyber, login, microsoft, phishing, windows

A new Browser-in-the-Browser (BitB) phishing campaign is abusing fake OAuth login windows to steal Microsoft 365 credentials, and its design is polished enough to bypass casual visual checks. The attack uses a draggable popup that mimics a real browser dialog. However, it is embedded in the page itself and paired with a spoofed Microsoft OAuth…
North Korea Hackers Weaponize GitHub to Target Developers

Jun 9, 2026 2:42 PM

Tags: crypto, cyber, email, finance, github, hacker, korea, malware, north-korea, phishing, technology

A sustained phishing campaign that leverages developer recruitment and code-review lures to deliver cross”‘platform malware via attacker-controlled GitHub repositories. Tracked as UNK_DeadDrop and attributed with high confidence to a North Korea”‘aligned actor, the operation targeted nearly 100 organizations across finance, cryptocurrency, education and technology by sending more than 250 tailored emails over six weeks. The…
Kalender-Phishing nimmt zu: Angreifer umgehen E-Mail-Schutz mit manipulierten Einladungen

Jun 9, 2026 11:43 AM

Tags: mail, phishing

Eine angebliche Besprechung, ein vermeintlicher Support-Termin oder ein dringender Video-Call erzeugen Handlungsdruck. Nutzer klicken schneller auf ‘Teilnehmen”. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/kalender-phishing-nimmt-zu-angreifer-umgehen-e-mail-schutz-mit-manipulierten-einladungen/a45406/
WhatsApp Discovers NSO Group-Linked Spearphishing Attempts

Jun 9, 2026 10:42 AM

Tags: group, phishing

Meta’s WhatsApp demands contempt ruling after users report NSO Group-linked phishing First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/whatsapp-nso-group-spearphishing/