Phishing News

Cybercriminals are always finding new ways to trick people, and one of the latest scams on the rise is called vishing, short for voice phishing. Unlike email scams (known as phishing), vishing happens over the phone. Recent studies have highlighted a dramatic escalation in vishing attacks. The 2025 CrowdStrike Global Threat Report documented a 442% The post Vishing: The voice scam you need to know about first appeared on Cybersecurity Insiders. The post Vishing: The voice scam you need to know about appeared first on Cybersecurity Insiders.

The cybersecurity company empowering MSPs to secure small businesses identified a highly sophisticated Microsoft 365 tenant brand manipulation and disrupted its use against their customers. Guardz, the cybersecurity company empowering MSPs and IT professionals to deliver comprehensive, AI-native cyber protection for small businesses, today disclosed the findings of its research into a highly sophisticated, ongoing The post Guardz Reveals Details of an Ongoing Phishing Campaign Exploiting Microsoft 365 Infrastructure first appeared on Cybersecurity Insiders. The post Guardz Reveals Details of an Ongoing Phishing Campaign Exploiting Microsoft 365 Infrastructure appeared first on Cybersecurity Insiders.

By Andy Swift, Cyber Security Assurance Technical Director at Six Degrees Since they first appeared in the 1990s, quick response (QR) codes have rapidly become intertwined in our daily lives. Used today for everything from ordering food to paying for parking or undertaking virtual tours at a museum exhibition, QR codes make it convenient and The post Is quishing the new phishing? Protecting your business against the next threat vector first appeared on Cybersecurity Insiders. The post Is quishing the new phishing? Protecting your business against the next threat vector appeared first on Cybersecurity Insiders.

In today’s digital age, phishing attacks have become one of the most prevalent threats to organizations. Cybercriminals are constantly devising new methods to deceive employees into sharing sensitive information, whether it be through emails, phone calls, or other communication channels. As these attacks continue to evolve, organizations must prioritize training their employees to recognize and The post Can Simulated Phishing Attacks Help in Training and Creating Awareness Among Employees? first appeared on Cybersecurity Insiders. The post Can Simulated Phishing Attacks Help in Training and Creating Awareness Among Employees? appeared first on Cybersecurity Insiders.

In recent years, we’ve witnessed the rise of phishing attacks, where cybercriminals trick victims into clicking on malicious web links to harvest sensitive personal information. Building upon this tactic, a new form of attack has emerged known as “Mishing” — a cyber campaign specifically targeting mobile devices with phishing links, usually propagated through SMS or The post Mishing Cyber Attack from malicious PDF first appeared on Cybersecurity Insiders. The post Mishing Cyber Attack from malicious PDF appeared first on Cybersecurity Insiders.

Microsoft’s Threat Intelligence teams have uncovered and exposed a spear phishing campaign targeting WhatsApp accounts, attributed to the Russian-linked hacker group Star Blizzard. The campaign began in October 2023 and continued through August 2024. Following extensive analysis, Microsoft’s experts revealed that the campaign primarily targeted journalists, politicians, think tanks, and NGO leaders. These individuals’ data The post Microsoft exposes WhatsApp Spear Phishing Campaign of Star Blizzard first appeared on Cybersecurity Insiders. The post Microsoft exposes WhatsApp Spear Phishing Campaign of Star Blizzard appeared first on Cybersecurity Insiders.

PayPal, the widely used online payment platform, is currently facing scrutiny after being linked to a “No Phish Phishing” scam that is tricking users into falling for a sophisticated fraud scheme. The scam, which exploits a weakness in PayPal’s operational system, is deceiving users with emails that appear to be notifications about payments being processed. The post Better be aware of this ongoing PayPal Phishing Scam that seems genuine first appeared on Cybersecurity Insiders. The post Better be aware of this ongoing PayPal Phishing Scam that seems genuine appeared first on Cybersecurity Insiders.

For years, there’s been a widely held belief that iOS devices—such as iPhones—are virtually immune to phishing attacks, largely due to Apple’s strong emphasis on security and its reputation for prioritizing user protection. In contrast, Android devices, with their more open operating system, were often viewed as more vulnerable to such cyber threats. However, a The post Apple iOS devices are more vulnerable to phishing than Android first appeared on Cybersecurity Insiders. The post Apple iOS devices are more vulnerable to phishing than Android appeared first on Cybersecurity Insiders.

Whaling phishing attacks are growing, targeting C-suite executives and senior leaders with precision. The 2024 Verizon Data Breach Investigations Report reveals that 69% of breaches involved a human element, with phishing remaining a dominant attack vector. High-profile cases have involved millions of dollars being stolen on false pretexts. In one recent incident, phishing experts created The post Aiming for Whales: Phishing Tactics Are Climbing the Corporate Ladder first appeared on Cybersecurity Insiders. The post Aiming for Whales: Phishing Tactics Are Climbing the Corporate Ladder appeared first on Cybersecurity Insiders.

Microsoft has recently issued a significant warning regarding the activities of a cyber-crime group named ONNX Marketing Services, which has been identified as distributing highly sophisticated phishing email kits. These kits have the potential to compromise Microsoft Customer Accounts across a wide range of online services, significantly threatening the security of personal and corporate data. The post Microsoft seizes websites distributing Phishing email kits first appeared on Cybersecurity Insiders. The post Microsoft seizes websites distributing Phishing email kits appeared first on Cybersecurity Insiders.