Tag: spam

41 Prozent der Spam-Mails zum Valentinstag sind digitaler Betrug

Feb 13, 2026 4:58 PM

Tags: fraud, germany, mail, spam

Wie jedes Jahr ist auch der diesjährige Valentinstag eine Hochphase für betrügerische Mails. In der Analyse erkannten Experten der Bitdefender Labs 41 Prozent der Spam-Mails mit Bezug zum Valentinstag im Januar und Anfang Februar als betrügerisch. 55 Prozent der bösartigen Nachrichten zielten auf Absender in den USA. Deutschland liegt als Zielland mit 13 Prozent auf…
AI-Driven Phishing and QR Code Quishing Surge in 2025 Spam and Phishing Report

Feb 13, 2026 8:58 AM

Tags: ai, breach, control, cyber, malware, phishing, qr, social-engineering, software, spam, threat

The 2025 spam and phishing landscape shows a sharp rise in AI-generated lures and QR codebased “quishing,” alongside complex malware campaigns abusing cracked games and software to deliver information stealers at scale. These trends highlight how social engineering and multi”‘stage loaders now work together to bypass traditional security controls and monetize stolen data. Threat actors…
Lehren aus dem Substack-Hack

Feb 12, 2026 1:58 PM

Tags: cyberattack, login, mail, password, phishing, smishing, social-engineering, spam

Anfang Februar machte die Meldung die Runde, dass die Newsletter-Plattform Substack einen Datenverlust vermelden musste. Zwar sind wohl keine Finanzdaten oder Login-Passwörter kompromittiert worden, dennoch sollte das Durchsickern von E-Mail-Adressen und Telefonnummern nicht unterschätzt werden. Diese Daten könnten für gezielte Social-Engineering-Angriffe, Spam-Kampagnen, Phishing-E-Mails und zunehmend auch für Smishing-Angriffe per SMS missbraucht werden. Social-Engineering-Taktiken haben sich…
TransUnion’s Real Networks Deal Focuses on Robocall Blocking

Feb 10, 2026 3:14 PM

Tags: network, scam, spam

The acquisition allows the credit reporting agency to add SMS spam and scam prevention to its robocall blocking capabilities. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/transunion-s-real-networks-deal-focuses-on-robocall-blocking
Windows shortcut weaponized in Phorpiex-linked ransomware campaign

Feb 10, 2026 2:14 PM

Tags: access, botnet, data, detection, email, encryption, endpoint, exploit, group, malicious, malware, monitoring, network, phishing, ransom, ransomware, spam, windows

Phorpiex as the distribution layer: Forcepoint attributed the email distribution in this campaign to the Phorpiex botnet, also known as Trik. Phorpiex has been operating for more than a decade and is known for maintaining a large global footprint capable of delivering spam at scale. In this campaign, infected systems within the botnet are used…
Windows shortcut weaponized in Phorpiex-linked ransomware campaign

Feb 10, 2026 2:14 PM

Tags: access, botnet, data, detection, email, encryption, endpoint, exploit, group, malicious, malware, monitoring, network, phishing, ransom, ransomware, spam, windows

Phorpiex as the distribution layer: Forcepoint attributed the email distribution in this campaign to the Phorpiex botnet, also known as Trik. Phorpiex has been operating for more than a decade and is known for maintaining a large global footprint capable of delivering spam at scale. In this campaign, infected systems within the botnet are used…
17 WhatsApp-Betrugsmaschen, die Sie kennen sollten (und wie Sie sich schützen)

Feb 10, 2026 8:13 AM

Tags: fraud, spam

WhatsApp-Betrug breitet sich schneller aus denn je. Allein im Dezember 2025 verschickten Betrüger schätzungsweise 19,2 Milliarden Spam-Nachrichten, was Messenger-Dienste zu einem der effektivsten Werkzeuge für Online-Betrug macht. Von falschen Gewinnen und Identitätsdiebstahl bis hin zu Investment- und Kontoübernahmebetrug ist WhatsApp zu einem bevorzugten Ziel für Cyberkriminelle geworden. Viele dieser Nachrichten wirken auf den ersten… First…
Microsoft Acknowledges Exchange Online Spam Filter Mistakenly Blocks Valid Email

Feb 10, 2026 8:13 AM

Tags: business, communications, cyber, email, microsoft, phishing, service, spam

Microsoft is currently tackling a significant service degradation within Exchange Online that is disrupting business communications by incorrectly flagging legitimate emails as phishing attempts. The incident, tracked under the identifier EX1227432, began on February 5, 2026, and is causing valid messages to be trapped in quarantine rather than reaching their intended recipients. Spam Filter Mistakenly Blocks…
Hackers Exploit Free Firebase Accounts to Launch Phishing Campaigns

Feb 7, 2026 9:14 AM

Tags: cyber, detection, email, exploit, google, hacker, infrastructure, phishing, scam, spam

A new wave of phishing campaigns where scammers are abusing Google’s legitimate infrastructure to bypass security filters. Attackers are now creating free developer accounts on Google Firebase to send fraudulent emails that impersonate well-known brands. By leveraging the reputation of the Firebase domain, these attackers are successfully landing in users’ inboxes, bypassing standard spam detection…
Zendesk: Supportsysteme fluten EPostfächer massenhaft mit Spam

Feb 6, 2026 2:14 PM

Tags: mail, spam

Bei einigen Nutzern platzt vor lauter Support-Mails regelrecht das E-Mail-Postfach. Angreifer missbrauchen abermals Zendesk für den Spam-Versand. First seen on golem.de Jump to article: www.golem.de/news/e-mail-postfaecher-geflutet-zendesk-instanzen-nerven-wieder-mit-massig-spam-2602-205106.html
Spam Campaign Distributes Fake PDFs, Deploys Remote Monitoring Tools for Ongoing Access

Feb 6, 2026 7:13 AM

Tags: access, adobe, control, cyber, email, malicious, monitoring, social-engineering, software, spam, threat, tool, update

An ongoing spam campaign that leverages social engineering to deploy legitimate Remote Monitoring and Management (RMM) software on victim networks. By disguising malicious payloads as essential Adobe Acrobat updates, threat actors are successfully bypassing traditional security controls and establishing persistent remote access to sensitive systems. The campaign begins with a deceptive email delivering a PDF…
Zendesk spam wave returns, floods users with ‘Activate account’ emails

Feb 5, 2026 12:14 PM

Tags: email, spam

A fresh wave of spam is hitting inboxes worldwide, with users reporting that they are once again being bombarded by automated emails generated through companies’ unsecured Zendesk support systems. Some recipients say they are receiving hundreds of messages with strange or alarming subject lines. such as ‘Activate account…’ First seen on bleepingcomputer.com Jump to article:…
LookOut: Discovering RCE and Internal Access on Looker (Google Cloud On-Prem)

Feb 4, 2026 6:14 PM

Tags: access, attack, breach, business, cloud, control, data, data-breach, endpoint, exploit, flaw, google, infrastructure, injection, intelligence, leak, malicious, rce, remote-code-execution, risk, saas, spam, sql, threat, update, vulnerability

Tenable Research discovered two novel vulnerabilities in Google Looker that could allow an attacker to completely compromise a Looker instance. Google moved swiftly to patch these issues. Organizations running Looker on-prem should verify they have upgraded to the patched versions. Key takeaways Two novel vulnerabilities: Tenable Research discovered a remote code execution (RCE) chain via…
Echte Microsoft-Mailadresse verschickt Spam: Wie Cyberkriminelle einen Dienst für ihre Zwecke missbrauchen

Jan 30, 2026 5:22 PM

Tags: microsoft, spam

First seen on t3n.de Jump to article: t3n.de/news/echte-microsoft-mailadresse-verschickt-spam-1727257/
Is it safe to open spam emails? Enterprise risks

Jan 30, 2026 2:23 PM

Tags: credentials, email, risk, spam

Is it safe to open spam emails? Usually, yes. Risk escalates with links, attachments, and credential prompts – then containing outbound abuse quickly matters. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/is-it-safe-to-open-spam-emails-enterprise-risks/
There’s a rash of scam spam coming from a real Microsoft address

Jan 28, 2026 12:21 AM

Tags: microsoft, scam, spam

Abusing Microsoft’s reputation may make scam harder to spot. First seen on arstechnica.com Jump to article: arstechnica.com/information-technology/2026/01/theres-a-rash-of-scam-spam-coming-from-a-real-microsoft-address/
Wegen KI-Spam: curl stellt Bug-Bounty ein

Jan 27, 2026 12:21 PM

Tags: ai, bug-bounty, spam

Das curl-Projekt muss nach Jahren und Tausenden Dollar an Sicherheitsforscher sein Bug-Bounty-Programm einstellen. Der Grund: LLMs. First seen on tarnkappe.info Jump to article: tarnkappe.info/kommentar/wegen-ki-spam-curl-stellt-bug-bounty-ein-325472.html
Gmail Spam Filter Breakdown Affects 1.8B Users

Jan 26, 2026 11:21 AM

Tags: email, spam

The disruption began Saturday (5am Pacific time, Jan .24) affecting approximately 1.8 billion Gmail users worldwide with widespread email misclassification. The post Gmail Spam Filter Breakdown Affects 1.8B Users appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-gmail-spam-filter-breaks/
Support-Mails ohne Ende: Riesige Spam-Welle von Zendesk flutet EPostfächer

Jan 22, 2026 10:30 AM

Tags: mail, spam

Angreifer missbrauchen Zendesk-Instanzen, um massenhaft Spam-Mails zu verschicken. Betroffene empfangen teils Hunderte E-Mails in nur einer Stunde. First seen on golem.de Jump to article: www.golem.de/news/support-mails-ohne-ende-riesige-spam-welle-von-zendesk-flutet-e-mail-postfaecher-2601-204480.html
Mass Spam Attacks Leverage Zendesk Instances

Jan 20, 2026 10:54 PM

Tags: attack, breach, email, software, spam

The CRM vendor advised ignoring or deleting suspicious emails and said the attacks were not tied to any breach or software vulnerability. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/mass-spam-attacks-zendesk-instances
NDSS 2025 >>Who Is Trying To Access My Account?<<

Jan 15, 2026 9:52 PM

Tags: access, attack, authentication, awareness, conference, Internet, login, network, password, phishing, privacy, risk, spam, unauthorized

Session 8D: Usability Meets Privacy Authors, Creators & Presenters: Tongxin Wei (Nankai University), Ding Wang (Nankai University), Yutong Li (Nankai University), Yuehuan Wang (Nankai University) PAPER “Who Is Trying To Access My Account?” Risk-based authentication (RBA) is gaining popularity and RBA notifications promptly alert users to protect their accounts from unauthorized access. Recent research indicates…
Instagram Confirms Password-Reset Spam Flood, Denies Breach

Jan 12, 2026 7:02 PM

Tags: breach, data-breach, email, leak, malicious, password, spam, threat

Security Experts See Coincidental Timing After Leak of Scraped Instagram User Data. Instagram said a massive wave of password reset emails sent to its users traced to malicious abuse of a legitimate feature, but didn’t result from any breach of its systems. Separately, security experts said a threat actor leaked 6.2 million users’ email addresses,…
Google Chrome Pushes Critical Security Update for 3B Users

Jan 12, 2026 6:02 PM

Tags: api, browser, chrome, cve, google, spam, update

Google patched high-severity CVE-2026-0628 in Chrome 143 and added Push API rate limits to curb notification spam, with penalties up to 14 days. The post Google Chrome Pushes Critical Security Update for 3B Users appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-chrome-vulnerabilities-3b/
Phishing-Angreifer setzen vermehrt auf E-Mail-Routing-Lücken

Jan 8, 2026 4:01 PM

Tags: 2fa, authentication, business, cyberattack, dmarc, dns, email, framework, infrastructure, intelligence, mail, mfa, microsoft, password, phishing, risk, service, spam, threat

Angreifer missbrauchen falsch konfigurierte Richtlinien, um Phishing-E-Mails wie interne E-Mails aussehen zu lassen, Filter zu umgehen und Anmeldedaten zu stehlen.Das Threat Intelligence Team von Microsoft hat kürzlich festgestellt, dass Angreifer zunehmend komplexe E-Mail-Weiterleitungen und falsch konfigurierte Domain-Spoofing-Schutzmaßnahmen ausnutzen. Dabei lassen sie ihre Phishing-Nachrichten so aussehen, als würden sie von den angegriffenen Organisationen selbst stammen.In den…
Microsoft scraps Exchange Online spam clamp after customers cry foul

Jan 7, 2026 5:01 PM

Tags: email, microsoft, spam

Negative feedback sinks Redmond’s plan to cap outbound email recipients First seen on theregister.com Jump to article: www.theregister.com/2026/01/07/exchange_online_recipient_rate/
Microsoft warns of a surge in phishing attacks exploiting email routing gaps

Jan 7, 2026 2:01 PM

Tags: access, attack, authentication, breach, control, defense, detection, dmarc, email, exploit, identity, infrastructure, mail, mfa, microsoft, password, phishing, service, spam, vulnerability

Hardening configurations can help: The disclosure emphasizes that proper configuration of mail authentication mechanisms is the most effective defense against this spoofing vector. Organizations are advised to adopt strict DMARC reject policies and enforce SPF hard fails so that unauthenticated mail claiming to be from their domains is rejected or safely quarantined.Additionally, recommendations include ensuring…
NDSS 2025 HADES Attack: Understanding And Evaluating Manipulation Risks Of Email Blocklists

Jan 6, 2026 7:52 PM

Tags: attack, conference, dns, email, exploit, infrastructure, Internet, malicious, mitigation, network, risk, service, spam, technology

Session 8A: Email Security Authors, Creators & Presenters: Ruixuan Li (Tsinghua University), Chaoyi Lu (Tsinghua University), Baojun Liu (Tsinghua University;Zhongguancun Laboratory), Yunyi Zhang (Tsinghua University), Geng Hong (Fudan University), Haixin Duan (Tsinghua University;Zhongguancun Laboratory), Yanzhong Lin (Coremail Technology Co. Ltd), Qingfeng Pan (Coremail Technology Co. Ltd), Min Yang (Fudan University), Jun Shao (Zhejiang Gongshang University)…
TDL 012 – The Architect of the Internet on the Future of Trust

Dec 27, 2025 5:55 AM

Tags: ai, apple, breach, browser, business, cctv, computing, control, credit-card, data, dns, email, google, infrastructure, intelligence, Internet, jobs, law, mail, metric, microsoft, network, privacy, radius, russia, service, spam, threat, ukraine, vulnerability

Summary In this episode of The Defenders Log, Paul Mockapetris, the architect of DNS, discusses the evolving role of the Domain Name System from a simple directory to a sophisticated security tool. He posits that modern networking requires “making sure DNS doesn’t work when you don’t want it to,” comparing DNS filtering to essential services…
Phishing-Hochsaison Weihnachten Bitdefender-Analyse zu ESpam

Dec 22, 2025 1:19 AM

Tags: mail, phishing, spam

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/phishing-hochsaison-weihnachten-bitdefender-analyse-e-mail-spam
Phishing-Hochsaison Weihnachten Bitdefender-Analyse zu ESpam

Dec 22, 2025 1:19 AM

Tags: mail, phishing, spam

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/phishing-hochsaison-weihnachten-bitdefender-analyse-e-mail-spam