Phishing

North Korean advanced persistent threat group Konni, which is associated with Kimsuky and APT37, has exploited the widely used South Korean instant messaging app KakaoTalk to facilitate malware distribution and data theft as part of a spear-phishing campaign, United Press International reports.

Benign content hidden at the bottom of an email is designed to “outweigh” malicious content.

A Hiya survey reveals that one in four Americans received a deepfake voice call in the past twelve months, with an additional 24% unsure if they could distinguish AI-generated voices from real ones.

The attack begins with threat actors manipulating search engine results to redirect users seeking enterprise VPN software to fake websites.

ClickFix campaigns use fake ChatGPT tools and Terminal tricks to infect macOS with MacSync infostealer.

The new features aim to protect users from scams that begin with simple social interactions, like friend requests or shared links.

The breach, discovered on February 6, 2026, involved the compromise of 889 Starbucks Partner Central accounts.

The White House sets a course in which AI-enabled email will play a strategic role.