ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
Why CISOs Are Betting Big on AI, Automation & Zero Trust
<html><body><p>CISOs are betting big on modern defenses as hybrid work, cloud migration, and advanced threats make traditional security frameworks obsolete. Ransomware, phishing, and AI-powered attacks now threaten data
Attack Via Infostealers Increased by 84% Via Phishing Emails Per Week
<html><body><p>Cybersecurity researchers have documented an alarming surge in infostealer malware distribution through phishing channels, with weekly delivery volume increasing by 84% in 2024 compared to the previous yea
New Phishing Attack Appending Weaponized HTML Files Inside SVG Files
<html><body><p>Cybersecurity experts have identified a sophisticated new phishing technique that exploits the SVG (Scalable Vector Graphics) file format to deliver malicious HTML content to unsuspecting victims. This eme
VibeScamming – Hackers Using AI Tools to Generate Phishing Ideas & Working Models
<html><body><p>In a concerning evolution of cybercrime, security researchers have identified a new threat known as “VibeScamming” – where malicious actors leverage generative AI to create sophisticated phishing campaigns
New FOG Ransomware Attack Mimic as DOGE Attacking Organization Via Weaponized Email
<html><body><p>Cybersecurity researchers have uncovered a sophisticated ransomware campaign where cybercriminals are distributing FOG ransomware while trolling victims by claiming ties to the Department of Government Eff
Russia-linked APT29 targets European diplomatic entities with GRAPELOADER malware
<html><body><p>Russia-linked group APT29 targeted diplomatic entities across Europe with a new malware loader codenamed GRAPELOADER. Check Point Research team reported that Russia-linked cyberespionage group APT29 (aka S
Hackers Exploiting Google’s OAuth System Flaws to Bypass Gmail Security Filters
<html><body><p>A highly sophisticated phishing attack exploiting vulnerabilities in Google’s OAuth system has been identified. The attack, which successfully bypasses Gmail’s security filters, appears legitimate to users
New SheByte PaaS Offering $199 Subscription for Cyber Criminals
<html><body><p>In the wake of LabHost’s shutdown in April 2024, a new player has emerged in the Phishing-as-a-Service (PhaaS) landscape, positioning itself as the heir apparent to the once-dominant platform. SheByte, whi
Researchers Uncovered The Stealthy StrelaStealer Malware Tactics, Techniques, and Procedures
<html><body><p>This malicious software specifically targets email credentials from popular clients such as Microsoft Outlook and Mozilla Thunderbird, creating significant security risks for organizations worldwide. The m
Windows NTLM hash leak flaw exploited in phishing attacks on governments
<html><body><p>A Windows vulnerability that exposes NTLM hashes using .library-ms files is now actively exploited by hackers in phishing campaigns targeting government entities and private companies. [...]</p></body></ht
Threat Actors Using Cascading Shadows Attack Chain to Avoid Detection & Complicate Analysis
<html><body><p>A sophisticated phishing campaign leveraging a multi-layered attack chain dubbed “Cascading Shadows” has been uncovered by the Palo Alto Networks’ Unit 42 researchers in December 2024. This campaign delive
CTM360 Tracks Global Surge in SMS-Based Reward and Toll Scams
<html><body><p>Thousands tricked by fake reward & toll scam texts. CTM360 exposes PointyPhish & TollShark—SMS phishing campaigns powered by the Darcula PhaaS platform, with 5K+ domains stealing payment info world
Beware of Weaponized Amazon Gift Cards That Steals Microsoft Credentials
<html><body><p>Cybercriminals have launched a sophisticated phishing campaign exploiting the popularity of digital gift cards to steal Microsoft credentials from unsuspecting users. This new attack vector disguises malic
Threat Actors Attacking Content Creators With Fake AI Tools to Hijack Their Devices
<html><body><p>Cybercriminals are capitalizing on the explosive growth of generative AI tools, deploying sophisticated campaigns that impersonate popular software like CapCut, Adobe Express, and Canva to distribute malwa
Server-Side Phishing Attacks Employees & Member Portals to Steal Login Credentials
<html><body><p>Credential theft through phishing remains one of the most reliable methods for gaining unauthorized access to enterprise environments. A sophisticated phishing campaign has been identified targeting employ
Securing Digital Identities – Best Practices for CISOs
<html><body><p>In the digital age, the security of digital identities has become a defining challenge for organizations worldwide. As businesses embrace cloud computing, remote work, and interconnected ecosystems, digita
Hackers Weaponize Gamma Tool Via Cloudflare Turnstile to Steal Microsoft Credentials
<html><body><p>Cybersecurity experts have uncovered a sophisticated multi-stage phishing campaign that exploits Gamma, an AI-powered presentation tool, to deliver credential-harvesting attacks targeting Microsoft account
APT29 Hackers Employs GRAPELOADER in New Attack Against European Diplomats
<html><body><p>A sophisticated phishing campaign by Russian-linked threat group APT29 has been actively targeting European diplomatic entities since January 2025, according to a recent security report. The campaign, beli
New Phishing Attack Targeting Job Seekers via WhatsApp Offers
<html><body><p>A sophisticated new phishing campaign identified targeting job seekers with fraudulent Meta and WhatsApp employment opportunities. The attack, which emerges amid a 12% rise in global phishing attempts sinc
Why Phishing Remains the #1 Cyber Threat & How to Stop It
<html><body><p>Phishing is the most prevalent and damaging cyber threat facing organizations and individuals worldwide. Despite technological advancements in cybersecurity, phishing attacks have persisted and evolved, ex