News

AI-Generated Phishing Sites Mimic Okta, Microsoft 365 in New Threat Campaign
Threat actors are exploiting Vercel's AI tool to generate convincing phishing pages. Read Vercel’s response and Okta’s tips ...
PCMag on MSN4d
Is ChatGPT Helping Phishing Scammers Steal Your Banking Login?
Cybersecurity researchers find that OpenAI’s model produces incorrect URLs when asked where to log in to popular brands, ...
Social Security Administration phishing scam targets retirees
Social Security phishing scams use urgency and impersonation to steal personal data. Learn how to spot fake SSA emails and ...
KATC2h
Scammers using Crowley Main Street name in phishing emails
Crowley Main Street officials issued a warning Wednesday after scammers tried to use the organization's name in a phishing ...
"He wrote phishing emails": Coding Jesus exposes Pirate Software for exaggerating false hacking claims
Coding Jesus has accused Pirate Software, also known as Jason Hall, of exaggerating his past work experience. Hall claimed to ...
DataBreachToday6d
Phishing Scammers Push for Callbacks in Latest Innovation
The phishing industry is a never ending source of innovation. Cyber fraudsters are determined to sneak their way into your ...
The Hacker News7d
Hackers Using PDFs to Impersonate Microsoft, DocuSign, and More in Callback Phishing Campaigns
Phishing campaigns use PDF attachments and callback phishing to exploit brands like Microsoft and DocuSign, affecting ...
Massive spike in use of .es domains for phishing abuse
The .es domains that host the malicious content, like the fake Microsoft sign-in portals, are in most cases randomly ...
Enable Enhanced Phishing Protection in Microsoft Defender
In this post, we will see how you can enable Enhanced Phishing Protection using Windows Security, Registry Editor, and Group ...
Cofense uncovers dramatic rise in phishing attacks using Spain’s .es domains
A new report out today from phishing defense company Cofense Inc. reveals a dramatic rise in malicious activity leveraging ...
The MFA You Trust Is Lying to You – and Here's How Attackers Exploit It
MFA Authenticator apps aren't cutting it anymore. Attackers are bypassing legacy MFA with fake sites and real-time phishing.
Microsoft 365 'Direct Send' abused to send phishing as internal users
An ongoing phishing campaign abuses a little‑known feature in Microsoft 365 called "Direct Send" to evade detection by email ...