Researchers have uncovered a sustained and ongoing campaign by Russian spies that uses a clever phishing technique to hijack ...

These kits are distributed online by criminal groups as part of phishing-as-a-service offers. In the specific case, the login ...

A new phishing kit called Astaroth bypasses two-factor authentication through session hijacking and real-time credential ...

Astaroth is an advanced phishing kit using real-time credential and session cookie capture to compromise Gmail, Yahoo and ...

Why? Because a phishing attack doesn’t have to evade the operating system or hide from your antivirus. It only has to fool ...

Every year, cybercriminals sharpen their tools and refine their tactics to exploit network and security vulnerabilities. Gone are the days of clumsy emails with glaring typos and suspicious ...

Researchers see dozens of fake DeepSeek websites used for credential phishing, cryptocurrency theft, and scams.

Hackers hijack high-profile X accounts with phishing scams to steal credentials and promote fraudulent cryptocurrency schemes ...

A help desk phishing campaign targets an organization's Microsoft Active Directory Federation Services (ADFS) using spoofed ...

Scammers are hoping to trick Phantom crypto wallet users into entering their seed phrases through malicious pop-ups.

The latest attacks lure users searching for terms such as 'Microsoft Ads' on Google Search, leading them to sponsored ads ...

Why? Because a phishing attack doesn’t have to evade the operating system or hide from your antivirus. It only has to fool you, the unsuspecting user. Creating a page that looks exactly like ...