Cybercriminals are abusing a legitimate Mimecast feature to deliver convincing phishing emails to their victims - at scale.

Hackers have a powerful new tool in their arsenal and the Spiderman phishing kit lets them almost instantly spoof multiple ...

A phone phishing attack compromised Harvard's alumni and donor database, marking the second security incident at the ...

Phishing attacks in 2025 increasingly moved beyond email, with attackers using social platforms, search ads, and ...

Security experts have issued a rare warning about, erm, Spiderman. Don’t worry, Peter Parker has not got into cybercrime — ...

Researchers detail new AI and phishing kits that steal credentials, bypass MFA, and scale attacks across major services.

Phishing attacks are consistently on the rise and becoming more sophisticated, as cybercriminals no longer rely solely on basic email schemes, instead incorporating new tactics such as QR code ...

One particularly sneaky scam is a browser-in-the-browser (BitB) attack, in which threat actors create a fake browser window that looks like a trusted single sign-on (SSO) login page within a real ...

The institution is the latest Ivy League to be targeted by cyber attackers. Emails and donation activity were compromised. Princeton University and the University of Pennsylvania were hit earlier this ...

ClickFix-style attack hijacks OAuth consent grants to take over Microsoft accounts, bypassing passwords, passkeys and MFA BLACK HAT, EUROPE (Booth #305) Push Security, a leader in browser-based ...

Update, Feb. 7, 2025: This story, originally published Feb. 6, now updated to include a new report on phishing kits as the Facebook scam attacks continue. A new warning from the security experts at ...

Phishing attacks were the most costly attack vector for the crypto industry in 2024, netting attackers over $1 billion across 296 incidents. Blockchain security firm CertiK has issued a warning to ...