SEARCH
Archive
Caffeine: A ‘Readily Accessible’ Phishing-as-a-Service Platform
Researchers said a new phishing-as-a-service platform features an entirely open registration process that makes it easier for cybercriminals to leverage.
Phishing Attack Targets Microsoft Flaw to Deliver Cobalt Strike
The attack was first discovered in August after victims received phishing emails containing malicious document attachments.
China-Based Group Uses ScanBox Framework in Espionage Attacks
The group activity has overlaps with APT40, which has continued its “operational tempo” despite a previous indictment by the U.S. Department of Justice in 2021.
Twilio Customer, Employee Accounts Compromised In Text Phishing Attack
Attackers compromised some customer and employee accounts at Twilio through a text-based phishing campaign.
Microsoft Exposes Phishing Campaign That Stole Session Cookies to Bypass MFA
Microsoft has identified a long, widespread phishing campaign that stole session cookies to bypass MFA and led to BEC and payment fraud.