Tag: phishing

Trade Republic: Nutzer werden mit Phishing-Mails in die Falle gelockt so schützt ihr euch

Jan 25, 2026 4:18 PM

Tags: mail, phishing

First seen on t3n.de Jump to article: t3n.de/news/trade-republic-phishing-mails-1726527/
ShinyHunters claim hacks of Okta, Microsoft SSO accounts for data theft

Jan 25, 2026 5:31 AM

Tags: attack, breach, corporate, data, extortion, google, microsoft, okta, phishing, saas, theft, threat

The ShinyHunters extortion gang claims it is behind a wave of ongoing voice phishing attacks targeting single sign-on (SSO) accounts at Okta, Microsoft, and Google, enabling threat actors to breach corporate SaaS platforms and steal company data for extortion. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/shinyhunters-claim-to-be-behind-sso-account-data-theft-attacks/
Researchers Uncover Multi-Stage AiTM Attack Using SharePoint to Bypass Security Controls

Jan 24, 2026 4:30 PM

Tags: access, attack, control, cyber, data-breach, email, microsoft, phishing, service

Microsoft Defender researchers have exposed a sophisticated adversary-in-the-middle (AiTM) phishing campaign targeting energy sector organizations, leveraging SharePoint file-sharing services to bypass traditional email security controls and compromise multiple user accounts. SharePoint Abuse for Initial Access The attack began with a phishing email sent from a compromised trusted vendor’s email address, embedding SharePoint URLs that mimicked…
Multi-Stage Phishing Campaign Targets Russia with Amnesia RAT and Ransomware

Jan 24, 2026 1:30 PM

Tags: access, attack, business, fortinet, phishing, ransomware, rat, russia, social-engineering

A new multi-stage phishing campaign has been observed targeting users in Russia with ransomware and a remote access trojan called Amnesia RAT.”The attack begins with social engineering lures delivered via business-themed documents crafted to appear routine and benign,” Fortinet FortiGuard Labs researcher Cara Lin said in a technical breakdown published this week. “These documents and…
ShinyHunters claim to be behind SSO-account data theft attacks

Jan 24, 2026 1:30 AM

Tags: attack, breach, corporate, data, extortion, google, microsoft, okta, phishing, saas, theft, threat

The ShinyHunters extortion gang claims it is behind a wave of ongoing voice phishing attacks targeting single sign-on (SSO) accounts at Okta, Microsoft, and Google, enabling threat actors to breach corporate SaaS platforms and steal company data for extortion. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/shinyhunters-claim-to-be-behind-sso-account-data-theft-attacks/
Voice Phishing Okta Customers: ShinyHunters Claims Credit

Jan 23, 2026 10:30 PM

Tags: attack, authentication, ciso, malicious, okta, phishing, service

Okta Alerts Customers’ CISOs to Malicious Campaigns Seeking Single Sign-On Access. A surge in attacks that bypass some types of multifactor authentication has been tied to a new generation of voice-phishing toolkits that give attackers the ability to orchestrate what a target sees in their browser, warns a new report from Okta, which is among…
The cybercrime industry continues to challenge CISOs in 2026

Jan 23, 2026 8:30 PM

Tags: access, ai, attack, automation, backup, best-practice, breach, business, ciso, compliance, control, credentials, crime, crowdstrike, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, defense, detection, disinformation, espionage, exploit, extortion, fortinet, framework, fraud, governance, group, hacker, hacking, identity, incident response, infection, infrastructure, insurance, intelligence, malware, metric, network, phishing, ransom, ransomware, resilience, risk, saas, service, soar, social-engineering, sophos, strategy, supply-chain, technology, theft, threat, tool, training, update, usa, vpn, vulnerability

Evolution of the security strategy: Alessandro Armenia, global head of cybersecurity at ReeVo, believes that three key aspects are emerging in the current landscape: “First, attacks are no longer isolated events, but coordinated, in some cases automated, operations that often originate within the organizations themselves, for example, due to human error or exposed credentials. Second,…
The cybercrime industry continues to challenge CISOs in 2026

Jan 23, 2026 8:30 PM

Tags: access, ai, attack, automation, backup, best-practice, breach, business, ciso, compliance, control, credentials, crime, crowdstrike, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, defense, detection, disinformation, espionage, exploit, extortion, fortinet, framework, fraud, governance, group, hacker, hacking, identity, incident response, infection, infrastructure, insurance, intelligence, malware, metric, network, phishing, ransom, ransomware, resilience, risk, saas, service, soar, social-engineering, sophos, strategy, supply-chain, technology, theft, threat, tool, training, update, usa, vpn, vulnerability

Evolution of the security strategy: Alessandro Armenia, global head of cybersecurity at ReeVo, believes that three key aspects are emerging in the current landscape: “First, attacks are no longer isolated events, but coordinated, in some cases automated, operations that often originate within the organizations themselves, for example, due to human error or exposed credentials. Second,…
Critical Vulnerabilities and Phishing Campaigns Dominate Cybersecurity Headlines

Jan 23, 2026 5:36 PM

Tags: cybersecurity, phishing, vulnerability

Weekly summary of Cybersecurity Insider newsletters First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/weekly-roundup/critical-vulnerabilities-and-phishing-campaigns-dominate-cybersecurity-headlines/
Okta Uncovers Custom Phishing Kits Built for Vishing Callers

Jan 23, 2026 4:34 PM

Tags: credentials, mfa, okta, phishing, phone

They can intercept user credentials while providing real-time context that helps attackers convince victims to approve MFA challenges during phone calls.. The post Okta Uncovers Custom Phishing Kits Built for Vishing Callers appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-phishing-kits-vishing-callers/
Okta Uncovers Custom Phishing Kits Built for Vishing Callers

Jan 23, 2026 4:34 PM

Tags: credentials, mfa, okta, phishing, phone

They can intercept user credentials while providing real-time context that helps attackers convince victims to approve MFA challenges during phone calls.. The post Okta Uncovers Custom Phishing Kits Built for Vishing Callers appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-phishing-kits-vishing-callers/
MacSync macOS Infostealer Exploits ClickFix-style Attack to Trick Users with Single Terminal Command

Jan 23, 2026 4:34 PM

Tags: access, attack, credentials, crypto, cyber, exploit, Hardware, login, macOS, malware, microsoft, phishing, service, social-engineering, tool

A sophisticated macOS infostealer campaign that leverages deceptive ClickFix-style social engineering to distribute MacSync, a Malware-as-a-Service (MaaS) credential-stealing tool targeting cryptocurrency users. The attack chain begins with phishing redirects and culminates in persistent access through trojanized hardware wallet applications. The campaign initiates with credential harvesters impersonating Microsoft login pages. Analysis of crosoftonline[.]com/login[.]srf a domain spoofing official Microsoft…
The 2025 Phishing Surge Proved One Thing: Chasing Doesn’t Work

Jan 23, 2026 2:30 PM

Tags: phishing

<div cla Let’s get something out of the way: retrospectives can feel a bit like mandatory fun. Someone gathers up the year’s events, packages them into neat categories, and delivers “key takeaways” that land somewhere between obvious and forgettable. This is not that. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/the-2025-phishing-surge-proved-one-thing-chasing-doesnt-work/
Okta users under attack: Modern phishing kits are turbocharging vishing attacks

Jan 23, 2026 2:30 PM

Tags: attack, credentials, login, okta, phishing, threat

Threat actors who specialize in vishing (i.e., voice phishing) have started using phishing kits that can intercept targets’ login credentials while also allowing … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/23/okta-vishing-adaptable-phishing-kits/
Unterschätztes Risiko: Insider-Bedrohungen endlich ernst nehmen

Jan 23, 2026 1:30 PM

Tags: access, ai, compliance, cyberattack, cybersecurity, data, fraud, governance, identity, infrastructure, mail, nis-2, phishing, resilience, risk, risk-analysis, risk-management, security-incident, threat, tool, vulnerability

48 Prozent der Fälle von Datendiebstahl, Industriespionage oder Sabotage in Unternehmen gehen laut einer Studie auf Mitarbeiter zurück.Was wäre, wenn das größte Sicherheitsrisiko Ihrer Organisation bereits einen Mitarbeitendenausweis besitzt, legitim angemeldet ist und genau weiß, wie interne Prozesse funktionieren? Diese Frage ist unbequem, aber sie markiert den Ausgangspunkt für eine längst überfällige Auseinandersetzung mit Insider-Bedrohungen.…
1Password targets AI-driven phishing with built-in prevention

Jan 23, 2026 1:30 PM

Tags: ai, phishing, risk

To help reduce phishing risk, 1Password added an extra layer of protection and began rolling out a phishing prevention feature designed to stop users before they share … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/23/1password-phishing-prevention-feature/
Phishing Attack Uses Stolen Credentials to Install LogMeIn RMM for Persistent Access

Jan 23, 2026 1:30 PM

Tags: access, attack, breach, credentials, cybersecurity, monitoring, phishing, software, threat, tool

Cybersecurity researchers have disclosed details of a new dual-vector campaign that leverages stolen credentials to deploy legitimate Remote Monitoring and Management (RMM) software for persistent remote access to compromised hosts.”Instead of deploying custom viruses, attackers are bypassing security perimeters by weaponizing the necessary IT tools that administrators trust,” KnowBe4 Threat First seen on thehackernews.com Jump…
Manage My Health Data Breach Sparks Warnings Over Impersonation and Phishing Attempts

Jan 23, 2026 10:31 AM

Tags: breach, data, data-breach, phishing

The fallout from the Manage My Health data breach is continuing, with the company warning that fraudsters may now be attempting to contact affected users by impersonating the online patient portal. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/manage-my-health-data-breach-phishing/
Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms

Jan 23, 2026 10:31 AM

Tags: attack, awareness, business, email, microsoft, phishing, service

Microsoft has warned of a multi”‘stage adversary”‘in”‘the”‘middle (AitM) phishing and business email compromise (BEC) campaign targeting multiple organizations in the energy sector.”The campaign abused SharePoint file”‘sharing services to deliver phishing payloads and relied on inbox rule creation to maintain persistence and evade user awareness,” the Microsoft Defender Security Research Team said. First seen on thehackernews.com…
Ransomware gang’s slip-up led to data recovery for 12 US firms

Jan 23, 2026 5:30 AM

Tags: access, attack, backup, breach, business, citrix, cloud, corporate, cyber, data, data-breach, detection, encryption, endpoint, exploit, finance, group, incident response, infosec, infrastructure, law, linux, network, phishing, powershell, ransom, ransomware, risk, software, spear-phishing, sql, threat, tool, veeam, vulnerability

scrutinize and audit your backups. If you have a regular backup schedule, is there unexpected or unexplained activity? Von Ramin Mapp notes that crooks are known to time data exfiltration to match corporate off-site backups as a way to hide their work;monitor for encrypted data leaving your environments and see where it goes. Does this…
Breach Roundup: DOGE Uploaded Social Security Data to Cloud

Jan 22, 2026 11:30 PM

Tags: attack, breach, cloud, cve, data, hacker, north-korea, phishing, ransomware

Also, CIRO Phishing Breach, Ingram Micro Ransomware and CVE Surge. This week, DOGE posted sensitive data on an outside server. A phishing attack affected 750,000 Canadians. A hacktivism warning from the U.K. NCSC. An Ingram Micro breach. CVEs surged in 2025. SK Telecom challenged a fine. Researchers disclosed Chainlit flaws. North Korean hackers abused VS…
Okta SSO accounts targeted in vishing-based data theft attacks

Jan 22, 2026 11:30 PM

Tags: attack, credentials, data, okta, phishing, social-engineering, theft

Okta is warning about custom phishing kits built specifically for voice-based social engineering (vishing) attacks. BleepingComputer has learned that these kits are being used in active attacks to steal Okta SSO credentials for data theft. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/okta-sso-accounts-targeted-in-vishing-based-data-theft-attacks/
Crims compromised energy firms’ Microsoft accounts, sent 600 phishing emails

Jan 22, 2026 8:57 PM

Tags: email, microsoft, phishing

Logging in, not breaking in First seen on theregister.com Jump to article: www.theregister.com/2026/01/22/crims_compromised_energy_firms_microsoft/
KI-generierte Malware bedroht Entwickler und Blockchain-Ökosysteme

Jan 22, 2026 6:46 PM

Tags: ai, blockchain, cyber, malware, phishing, software

Check Point Research veröffentlicht die Ergebnisse seiner Analyse einer neuen Phishing-Kampagne im Zusammenhang mit <>. Die Malware-Familie wird der nordkoreanischen Gruppe APT37 zugerechnet. Aufgrund der Analyse stellen die Sicherheitsforscher fest, dass KI-generierte Malware nun einsatzbereit ist und Cyber-Kriminelle nicht mehr nur damit experimentieren. Die Kampagne zielt auf Software-Entwickler und Ingenieure ab, die an Blockchain- und…
DPRK Actors Deploy VS Code Tunnels for Remote Hacking

Jan 22, 2026 4:30 PM

Tags: hacking, infrastructure, korea, microsoft, phishing, spear-phishing

A spear-phishing campaign tied to the Democratic People’s Republic of Korea (DPRK) uses trusted Microsoft infrastructure to avoid detection. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/dprk-vs-code-tunnels-remote-hacking
PNB MetLife Phishing Attack: Multi-Stage Scheme Steals Data, Triggers UPI Payments

Jan 22, 2026 4:30 PM

Tags: attack, banking, credentials, cyber, data, exploit, insurance, phishing, service

A sophisticated multi-stage phishing campaign is actively targeting PNB MetLife Insurance customers through fake payment gateway pages. The attack chain extracts customer details, forces fraudulent UPI payments, and escalates to full banking credential harvesting. Attackers exploit customer trust in the brand while leveraging free hosting services and Telegram bots to exfiltrate data in real time.…
PNB MetLife Phishing Attack: Multi-Stage Scheme Steals Data, Triggers UPI Payments

Jan 22, 2026 4:30 PM

Tags: attack, banking, credentials, cyber, data, exploit, insurance, phishing, service

A sophisticated multi-stage phishing campaign is actively targeting PNB MetLife Insurance customers through fake payment gateway pages. The attack chain extracts customer details, forces fraudulent UPI payments, and escalates to full banking credential harvesting. Attackers exploit customer trust in the brand while leveraging free hosting services and Telegram bots to exfiltrate data in real time.…
Energy sector orgs targeted with AiTM phishing campaign

Jan 22, 2026 3:31 PM

Tags: attack, email, microsoft, phishing

Organizations in the energy sector are being targeted with phishing emails aimed at compromising enterprise accounts, Microsoft warns. The attack campaign The attacks started … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/22/energy-sector-aitm-phishing-sharepoint-misuse/
LastPass Warns of Phishing Campaign Attempting to Steal Master Passwords

Jan 22, 2026 1:30 PM

Tags: backup, email, password, phishing

Phoney email alerts suggest users need to backup their LastPass accounts within 24 hours. LastPass says it would never require this action from users First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/lastpass-phishing-master-passwords/
LastPass Warns of Phishing Campaign Targeting Its Customers

Jan 22, 2026 11:30 AM

Tags: password, phishing

The campaign targets customers with urgent “maintenance” alerts designed to steal master passwords within hours. The post LastPass Warns of Phishing Campaign Targeting Its Customers appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-lastpass-phishing-campaign/