ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
Microsoft Bookings Vulnerability Let Attackers Alter the Meeting Details
<html><body><p>A significant vulnerability in Microsoft Bookings allowed attackers to manipulate meeting details by exploiting insufficient input validation. The flaw, which Microsoft has largely remedied, enabled malic
KnowBe4 veröffentlicht Phishing-Report Q1 2025: Interne Kommunikation bleibt Schwachstelle
<html><body><p>Der Bericht unterstreicht die anhaltende Bedrohung durch in E-Mails eingebettete Phishing-Links, die nach wie vor eine Hauptangriffstaktik darstellen. Die Analyse zeigt, dass die Befragten eher auf Links k
CoGUI Phish Kit Impersonate Well-Known Companies to Attack Users & Steal Credentials
<html><body><p>A sophisticated phishing framework known as CoGUI has emerged as a significant threat, primarily targeting organizations in Japan with millions of phishing messages since October 2024. The kit impersonates
Beware of Fake Social Security Statement That Tricks Users to Install Malware
<html><body><p>A sophisticated phishing campaign targeting Americans is currently making rounds via fake Social Security Administration (SSA) emails. These convincingly crafted messages inform recipients that their Socia
CoGUI phishing platform sent 580 million emails to steal credentials
<html><body><p>A new phishing kit named 'CoGUI' sent over 580 million emails to targets between January and April 2025, aiming to steal account credentials and payment data. [...]</p></body></html>
Top Cyber Attacks In April 2025
<html><body><p>April wasn’t quiet in the world of cybersecurity. From sneaky fake CAPTCHAs to region-targeted phishing and revamped ransomware, attackers kept busy, refining their tricks and finding new ways to slip past
New Chinese Smishing Kit Dubbed ‘Panda Shop’ Steal Google, Apple Pay & Credit Card Details
<html><body><p>A sophisticated new smishing kit dubbed “Panda Shop” has emerged from China, enabling cybercriminals to steal financial data including Google Pay, Apple Pay, and credit card details. This kit leverages adv
New Sophisticated Phishing Attack Abuses Discord & Attacked 30,000 Users Worldwide
<html><body><p>A sophisticated phishing campaign that targets cryptocurrency users through Discord. The campaign has victimized over 30,000 users and resulted in losses exceeding $9 million over the past six months alone
Check Point entdeckt ausgeklügelte Phishing-Kampagne über Microsoft Dynamics 365 Customer Voice
<html><body><p>Check Point hat die Kampagne erfolgreich analysiert und blockiert – unter anderem durch die Extraktion der Links und die Integration zusätzlicher Sicherheitsmechanismen in seine Produkte.</p></body></html>
Popular Instagram Blogger’s Account Hacked to Trick Users & Steal Banking Credentials
<html><body><p>A prominent Instagram influencer with over 2.5 million followers became the unwitting host of a sophisticated phishing campaign this week. The unnamed lifestyle blogger’s account was compromised on Monday,
Darcula (PhaaS) Stolen 884,000 Credit Card Details on 13 Million Clicks from Users Worldwide
<html><body><p>Security researchers have uncovered one of the largest credit card theft operations in recent history, with a sophisticated Phishing-as-a-Service (PhaaS) platform called “Darcula” responsible for stealing
Beyond the hook: How phishing is evolving in the world of AI
<html><body><p>Phishing attacks are evolving. Gone are the days of clumsy, error-ridden emails that were easy to spot – today’s campaigns harness advanced techniques to bypass even the latest defences. A new approach is
Luna Moth extortion hackers pose as IT help desks to breach US firms
<html><body><p>The data-theft extortion group known as Luna Moth, aka Silent Ransom Group, has ramped up callback phishing campaigns in attacks on legal and financial institutions in the United States. [...]</p></body></
Hackers Attacking HR Departments with Fake Resumes That Drop More_eggs Malware
<html><body><p>A sophisticated cyber campaign targeting corporate human resources departments has been uncovered, with attackers exploiting the routine practice of opening job application attachments to deploy a dangerou
Darcula PhaaS steals 884,000 credit cards via phishing texts
<html><body><p>The Darcula phishing-as-a-service (PhaaS) platform stole 884,000 credit cards from 13 million clicks on malicious links sent via text messages to targets worldwide. [...]</p></body></html>
Darcula PhaaS steals 884,000 credit cards via SMS phishing texts
<html><body><p>The Darcula phishing-as-a-service (PhaaS) platform stole 884,000 credit cards from 13 million clicks on malicious links sent via text messages to targets worldwide. [...]</p></body></html>
Hackers Weaponizing Pahalgam Attack Themed Decoys to Attack Indian Government Personnel
<html><body><p>In a sophisticated cyber espionage campaign, threat actors are actively targeting Indian government personnel using decoy documents referencing the recent Pahalgam attack. The malicious campaign, discovere
New Luna Moth Domains Attacking Users Via Weaponized Helpdesk Domains
<html><body><p>Recently identified Luna Moth phishing operations reveal a sophisticated campaign targeting legal and financial institutions through expertly crafted typosquatted domains. Security researchers from Eclect
How to Configure Email Security With DMARC, SPF, And DKIM
<html><body><p>Email is a critical business communication tool, but it is also a primary target for cybercriminals who exploit its openness to launch phishing attacks, impersonate brands, and distribute malware. To count
New MintsLoader Drops GhostWeaver via Phishing & ClickFix Attack
<html><body><p>A sophisticated new malware loader dubbed “MintsLoader” has emerged in the cybersecurity landscape, serving as a delivery mechanism for a previously undocumented backdoor called “GhostWeaver.” Security res