Skip to main content
← All Tags

Phishing

12 articles in this category

AI NewsCybersecurityPhishing

Microsoft Warns of Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms

Microsoft reports a sophisticated, multi-stage adversary-in-the-middle (AitM) phishing and business email compromise (BEC) campaign impacting energy organizations.

Read more
AI NewsCybersecurityPhishing

Phishing Attack Leverages Stolen Credentials for LogMeIn RMM Deployment

A two-stage phishing campaign utilizes compromised email credentials to install LogMeIn Resolve RMM, enabling persistent and stealthy access to Windows systems.

Read more
AI NewsCyber SecurityPhishing

LastPass Warns of Phishing Campaign Targeting Master Passwords

LastPass is actively combating a phishing campaign that attempts to steal user master passwords through deceptive maintenance emails and spoofed domains.

Read more
AI NewsCybersecurityPhishing

Microsoft Warns Misconfigured Email Routing Can Enable Internal Domain Phishing

Microsoft reports a surge in phishing attacks exploiting email misconfigurations, with over 13 million malicious emails blocked in October 2025.

Read more
AI NewsCloud SecurityPhishing

Phishers Exploit Office 365 Users Who Let Their Guard Down

Microsoft reports a surge in Office 365 phishing attacks since May 2025, exploiting misconfigurations and weak anti-spoofing measures.

Read more
AI NewsCybersecurityPhishing

Nigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 Attacks

Nigerian authorities arrested the developer of RaccoonO365, a PhaaS toolkit responsible for the theft of at least 5,000 Microsoft credentials since July 2024.

Read more
AI NewsCyber SecurityPhishing

Russia-Linked Hackers Leverage Microsoft 365 Device Code Phishing for Account Takeovers

A Russia-aligned threat group, UNK_AcademicFlare, has been actively using Microsoft 365 device code phishing since September 2025 to steal credentials and compromise accounts.

Read more
AI NewsCybersecurityPhishing

New AI-Powered Phishing Kits Bypass MFA and Target Major Services

Researchers reveal four new phishing kits – BlackForce, GhostFrame, InboxPrime AI, and Spiderman – capable of stealing credentials, bypassing MFA, and scaling attacks.

Read more
AI NewsCybersecurityPhishing

Sneaky 2FA Phishing Kit Employs BitB Pop-ups to Mimic Browser Address Bars

The Sneaky 2FA phishing kit now utilizes Browser-in-the-Browser (BitB) pop-ups, increasing the success rate of credential theft attacks.

Read more
AI NewsCybersecurityPhishing

Google Sues China-Based Hackers Behind $1 Billion Lighthouse Phishing Platform

Google sues China-based hackers behind the $1B Lighthouse PhaaS scam affecting 1 million users globally.

Read more
AI NewsCybersecurityPhishing

Russian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests' Payment Data

Russian hackers created 4,300 fake travel sites in 2025 to steal hotel guests’ payment data using real brand logos.

Read more
AI NewsCyber SecurityPhishing

Global Smishing Campaign Linked to 194,000 Malicious Domains and Over $1 Billion in Fraud

A China-linked cybercriminal group, Smishing Triad, has used 194,000 malicious domains since 2024 to execute a global phishing operation, generating over $1 billion in fraud through smishing attacks targeting financial and government services.

Read more