Tag: social-engineering
-
APT37 Hackers Use NarwhalRAT Malware With MS-Themed Phishing and Dead-Drop C2
Tags: backdoor, cyber, data, hacker, malicious, malware, microsoft, phishing, powershell, social-engineering, spear-phishing, theftAPT37 is using NarwhalRAT in a tightly engineered intrusion chain that starts with Microsoft-themed spear-phishing, pivots through malicious LNK files and PowerShell, and ends with a Python-based backdoor with dead-drop C2 via pCloud. The campaign is notable for its layered tradecraft: social engineering, LOLBin abuse, scheduled-task persistence, in-memory execution, and selective data theft are all…
-
Chinesische PhaaS-Plattformen professionalisieren Phishing-Angriffe mit KI und Echtzeit-Tools
Die Analyse zeigt deutlich: Technische Schutzmaßnahmen allein reichen nicht aus. Unternehmen müssen ihre Mitarbeitenden kontinuierlich über Phishing und Social Engineering aufklären. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/chinesische-phaas-plattformen-professionalisieren-phishing-angriffe-mit-ki-und-echtzeit-tools/a45489/
-
Hackers Abuse NinjaOne RMM Agent to Gain Remote Access to Brazilian Organizations
Tags: access, business, cyber, exploit, finance, hacker, malware, monitoring, phishing, social-engineeringAn active phishing campaign that weaponizes a legitimate NinjaOne Remote Monitoring and Management (RMM) agent to gain persistent remote access to Brazilian organizations. Rather than relying on bespoke malware, the operators exploit familiar business workflows and Portuguese-language social engineering to trick finance, procurement, accounting and administrative staff into installing a digitally signed NinjaOne agent that…
-
Weaponized DMG Files Deliver macOS Infostealer Malware
A recent surge in macOS-targeted campaigns shows threat actors favoring weaponized disk images (.dmg) as the primary delivery mechanism for infostealer malware. Attackers are leveraging convincing, branded DMG installers and social-engineering tricks to bypass Gatekeeper and trick users into executing payloads that rapidly harvest credentials, cookies, authentication tokens, and cryptocurrency wallets before disappearing without persistence.…
-
Hackers Exploit ChatGPT, Claude, DeepSeek Brands in Credential Phishing Attacks
Threat actors are increasingly weaponizing the global fascination with large language models and generative AI by impersonating major AI brands ChatGPT, Anthropic’s Claude, DeepSeek, and others to trick users into revealing credentials, payment information, and to install malware. These campaigns are not breaches of the vendor platforms; they are classic social engineering and distribution techniques…
-
WhatsApp says it disrupted new NSO spyware phishing attacks
WhatsApp has detected and stopped spear-phishing campaigns allegedly conducted by the NSO Group after investigating user reports of social engineering attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/whatsapp-says-it-disrupted-new-nso-spyware-phishing-attacks/
-
Pink Hacking Group Targets Enterprises to Steal Cloud Passwords
A newly observed extortion brand called Pink (CL-CRI-1147) that is actively targeting enterprise users to harvest cloud storage credentials and bypass multi-factor authentication. The group’s leak site went live on May 31, 2026, and its operations combine social engineering with classic credential-phishing to quickly convert compromised accounts into extortion leverage. Pink’s attack chain begins with…
-
Silent Ransom Group targets law firms with fake IT support calls
Tags: attack, cybersecurity, data, extortion, group, law, ransom, service, social-engineering, theftThe Silent Ransom Group extortion gang is actively targeting U.S. law firms and professional services organizations in social engineering attacks that often lead to data theft within hours of initial contact, according to a new report by cybersecurity firm Mandiant. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/silent-ransom-group-targets-law-firms-with-fake-it-support-calls/
-
JINX-0164 Targets Crypto Firms With macOS Malware
A series of targeted intrusions against cryptocurrency organizations, attributing the activity to a newly identified threat actor tracked as JINX-0164. The campaign combines advanced social engineering, custom macOS malware, and deep access into development and CI/CD environments, enabling attackers to pivot from individual developer endpoints to critical software distribution systems. The group primarily targets developers…
-
Cyber Insurance Rates Are Dropping, but Exclusions Widen
Cyber insurance coverage is slowly changing, and some policies may not provide coverage for social engineering attacks like ClickFix. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/cyber-insurance-rates-drop-exclusions-widen
-
Malicious Notifications Could Trick Google Gemini Users
A prompt injection flaw in Google Gemini’s voice assistant let attackers hide malicious commands in notifications, enabling social engineering and more. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/malicious-notifications-could-trick-google-gemini-users
-
Silent Ransom Group Targets Law Firms With IT Impersonation Attacks
Silent Ransom Group is using IT impersonation and trusted tools to target law firms in evolving social engineering attacks. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/silent-ransom-group-targets-law-firms-with-it-impersonation-attacks/
-
Infosecurity Europe: Bayer Reinvents Security Awareness Training to Counter AI Threats
Bayer’s security awareness training now focuses on psychological approaches rather than technical methods for detecting social engineering First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/bayer-reinvents-security-awareness/
-
KnowBe4 startet siebte Staffel von ‘The Inside Man” mit Europapremiere in London
KnowBe4 feiert die Europapremiere von ‘The Inside Man” Staffel 7 in London. Die neue Serie verbindet KI-Risiken, Social Engineering und Security Awareness mit spannendem Storytelling. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/knowbe4-startet-siebte-staffel-von-the-inside-man-mit-europapremiere-in-london/a45353/
-
Nimbus Manticore APT Uses Fake Jobs to Deliver Custom Malware
A newly observed cyber campaign linked to the Iran-aligned threat group Nimbus Manticore (also tracked as UNC1549 and Smoke Sandstorm) is targeting aerospace and defense organizations using a deceptive recruitment workflow that delivers custom malware through a sophisticated sideloading chain. The operation highlights the group’s continued reliance on social engineering combined with stealthy execution techniques…
-
1st June Threat Intelligence Report
Carnival Corporation, a global cruise line operator, has confirmed a data breach affecting nearly 6 million people after attackers used social engineering to compromise an employee account. Exposed information may include names, contact […] First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2026/1st-june-threat-intelligence-report/
-
New ChatGPhish Technique Uses Prompt Injection to Manipulate ChatGPT Responses
Security researchers have unveiled ChatGPhish, a newly documented vulnerability concept that demonstrates how browser-based prompt injection can influence ChatGPT page summaries and potentially expose users to phishing, tracking, and social engineering attacks. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/chatgphish-prompt-injection-vulnerability/
-
Taiwan Flags Five Major Cyber Risks After 726 Security Incidents in 2025
Taiwan’s digital security authorities have identified five major areas of concern following hundreds of reported cybersecurity incidents involving government agencies in 2025. According to Taiwan’s Ministry of Digital Affairs, the country recorded 726 cybersecurity incidents this year, highlighting ongoing Taiwan cyber risk challenges tied to ransomware, fake software, supply chain weaknesses, and social engineering attacks. First seen…
-
PSN-Konten in Gefahr: Neue Social-Engineering-Masche bedroht Millionen PlayStation-Spieler
Tags: social-engineeringBetrüger übernehmen derzeit PlayStation-Accounts per Social Engineering und schwachem Sony-Support. Zahlreiche PSN-Konten gefährdet. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/gaming/psn-konten-in-gefahr-neue-social-engineering-masche-bedroht-millionen-playstation-spieler-329356.html
-
Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks
Ransomware and vendor breaches persist, but the 2026 Data Breach Investigations Report (DBIR) highlights how evolving social engineering tactics make the sector more vulnerable. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/verizon-dbir-healthcare-fends-off-increased-social-engineering-attacks
-
Russian Hackers Exploit RDP, VPNs, Supply Chains for Initial Access
Tags: access, cyber, defense, exploit, government, group, hacker, infrastructure, network, russia, social-engineering, supply-chain, threat, vpnRussian state-sponsored and aligned threat groups are increasingly combining Remote Desktop Protocol (RDP), Virtual Private Networks (VPNs), supply chain compromise, and sophisticated social engineering to gain initial access to targeted networks across government, critical infrastructure, and commercial sectors. This multi-vector approach allows them to bypass perimeter defenses, blend in with legitimate traffic, and maintain long-term…
-
Hackers Hide Malware in Nested macOS-Style Folders to Evade Scans
Hackers are increasingly adopting stealthy delivery techniques, and a newly uncovered spear-phishing campaign shows how nested macOS-like folder structures can be abused to evade detection while deploying advanced malware. The phishing email carries a ZIP attachment named “常州大å¦2026年《国家å¦ç, Ÿä½“è´¨å¥åº·æ ‡å‡†ã€‹æµ‹è¯•通知最终版.zip,” posing as an official university notice. The social engineering is unusually precise: failure in this fitness…
-
The new economics of fraud: Cheaper, faster, more convincing
Scams have become one of the fastest-growing consumer risks, driven by AI-enabled impersonation, social engineering, and sophisticated attack methods, according to Visa’s … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/22/visa-consumer-payment-fraud-report/
-
Fake Microsoft Teams Downloads Spread ValleyRAT Malware
Hackers are actively distributing a sophisticated ValleyRAT malware variant through fake Microsoft Teams download pages, leveraging social engineering and multi-stage execution techniques to evade detection. The campaign, first observed in mid-April on the X platform, uses fraudulent domains such as teams-securecall[.]com and teamszs[.]com. These sites closely mimic the official Microsoft Teams download page, tricking users…
-
Indian Student Data Weaponized in Phishing and Financial Fraud Campaigns
A growing trend in India where student data is increasingly being exploited for cybercrime activities, including phishing, impersonation, social engineering, and financial fraud. As educational institutions rapidly adopt digital platforms for admissions, fee payments, examinations, and communication, the volume of sensitive student information stored across systems has expanded significantly, creating new opportunities for threat actors.…
-
Ukraine says Russia is deploying AI-powered malware on the battlefield
A new report from Ukraine’s National Security and Defense Council says Russia’s use of AI across cyber operations expanded dramatically over the past year, reshaping everything from social engineering campaigns to malware development and creating what Ukrainian officials describe as a growing imbalance between attackers and defenders. First seen on therecord.media Jump to article: therecord.media/ukraine-says-russia-using-ai-malware-on-battlefield
-
Ukraine says Russia is deploying AI-powered malware on the battlefield
A new report from Ukraine’s National Security and Defense Council says Russia’s use of AI across cyber operations expanded dramatically over the past year, reshaping everything from social engineering campaigns to malware development and creating what Ukrainian officials describe as a growing imbalance between attackers and defenders. First seen on therecord.media Jump to article: therecord.media/ukraine-says-russia-using-ai-malware-on-battlefield
-
Stealer Spoofs Google, Microsoft & Apple, Then Backdoors macOS
The SHub Reaper stealer, which hides behind fake WeChat and Miro installers, marks a shift from ClickFix social engineering to Apple script-based execution. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/stealer-spoofs-google-microsoft-apple-backdoors-macos
-
Wie sich Behörden gegen Deepfakes wappnen können
Management Summary Deepfakes entwickeln sich für Behörden zu einem strategischen Vertrauens- und Sicherheitsrisiko: Sie bedrohen sowohl die öffentliche Glaubwürdigkeit staatlicher Kommunikation als auch interne Prozesse durch Identitätsbetrug, Social Engineering und die Umgehung biometrischer Authentifizierung. Nach Einschätzung von Gartner werden bis 2028 rund 40 Prozent der Regierungsorganisationen eigene TrustOps-Funktionen aufbauen, um solchen Bedrohungen zu begegnen. Der……
-
The economics of ransomware 3.0
Tags: alphv, attack, backup, breach, ceo, citrix, control, country, cyber, cyberattack, cybersecurity, data, data-breach, detection, encryption, endpoint, extortion, finance, framework, group, healthcare, HIPAA, incident response, insurance, moveIT, network, nist, office, privacy, ransom, ransomware, risk, russia, service, social-engineering, strategy, supply-chain, technology, threatTriple extortion mechanism. Ashish Mishra What the Change Healthcare case tells you about real costs: Consider what happened to Change Healthcare in early 2024. The ALPHV group’s attack on this healthcare payments processor didn’t just encrypt systems, it exposed the personal health information of potentially over 100 million Americans and disrupted pharmacy services across the…

