Phishing

Most Recent

Related Videos

Application security

Synced calendars a potential threat vector for millions of devices

Laura FrenchNovember 26, 2025

Expired or compromised domains could be used to push out malicious calendar files.

Incident Response

AI with Dr. Shakour Abuzneid – Shakour Abuzneid – SWN #532

November 25, 2025

Doug talks about AI with Cybersecurity Expert Dr. Shakour Abuzneid from Roger Williams University.

Phishing

Vishing attack compromises Harvard University data

SC StaffNovember 25, 2025

Harvard University has confirmed being impacted by a significant data breach following a voice phishing intrusion against its Alumni Affairs and Development systems, according to BleepingComputer.

Header graphic features a laptop with a red warning triangle and alert icons, dark background with streaming green code. It suggests concepts of cybersecurity threats, hacking, and system errors.

Phishing

Fake Windows Update screens harnessed in new ClickFix intrusions

SC StaffNovember 25, 2025

Information-stealing payloads are being spread via bogus Windows update screens as part of a new ClickFix attack campaign that has targeted organizations in the U.S., EMEA, and Asia-Pacific and Japan regions between Sep. 29 and Oct. 30, according to The Register.

Security Operations

TechCrunch warns of rising impersonation scams targeting businesses

SC StaffNovember 24, 2025

The scammers are adopting various tactics, including posing as TechCrunch staff to request introductory calls and extract proprietary details from companies.

Ransomware

Browser notifications abused to spread malicious links

Laura FrenchNovember 21, 2025

An illicit service called Matrix Push C2 allows users to coordinate push notification attacks.

Phishing

BitB integrated into updated Sneaky 2FA PhaaS kit

SC StaffNovember 19, 2025

The Hacker News reports that Microsoft account credentials have been pilfered by the upgraded Sneaky 2FA phishing-as-a-service kit through the newly embedded Browser-in-the-Browser functionality, which conceals phishing URLs via pop-up login forms.

Email security

Microsoft Entra guest invites harnessed in new phishing campaign

SC StaffNovember 18, 2025

Microsoft Entra B2B tenant invitations have been exploited by threat actors to facilitate a new Telephone-Oriented Attack Delivery phishing campaign, according to Cybernews.

Phishing

Related Videos

Threat predictions for 2024: Chained AI and CaaS operations give attackers more ‘easy’ buttons than ever

Synced calendars a potential threat vector for millions of devices

AI with Dr. Shakour Abuzneid – Shakour Abuzneid – SWN #532

Vishing attack compromises Harvard University data

Fake Windows Update screens harnessed in new ClickFix intrusions

TechCrunch warns of rising impersonation scams targeting businesses

Browser notifications abused to spread malicious links

BitB integrated into updated Sneaky 2FA PhaaS kit

Microsoft Entra guest invites harnessed in new phishing campaign

Fast Five

Selected by the SC Media Editorial team every Tuesday.