Phishing

The trend involves users sharing AI-generated caricatures based on prompts like "create a caricature of me and my job based on everything you know about me."

The arrested suspect is the third individual apprehended in connection with JokerOTP.

The fraudulent website, impersonating the legitimate 7-Zip project at 7zip[.]com, mimics the original site's structure and text.

The phishing campaign, first detected in mid-December 2025, months before Pride Month, targets organizations globally, with the UK and United States being heavily impacted.

Cybernews reports that Windows systems have been injected with various backdoors for long-term compromise as part of a new CrashFix attack campaign.

The campaign, active throughout 2024 and 2025, begins with emails containing attachments disguised as documents, often using double extensions like Document.doc.lnk.

Scammers employ techniques such as typosquatting, combosquatting, TLD squatting, and homograph attacks to trick users.

Apple users have been targeted with an advanced voice-based phishing intrusion that weaponizes Apple Pay fraud alerts to facilitate real-time login credential and two-factor authentication code compromise, reports Cybernews.