phishing Archives

RaccoonO365 login page (Credit: Microsoft's Digital Crimes Unit) — RaccoonO365 login page (Credit: Microsoft’s Digital Crimes Unit)

Microsoft seizes hundreds of phishing sites tied to massive credential theft operation

The company acted on a court order and collaborated with Cloudflare to seize RaccoonO365’s infrastructure, which was used to steal credentials from organizations in 94 countries.

1 day ago By Matt Kapko

Salesforce headquarters in San Francisco. — Exterior view of Salesforce’s headquarters in San Francisco on Feb. 28, 2024. (Justin Sullivan/Getty Images)

Salesforce customers duped by series of social-engineering attacks

Google Threat Intelligence Group said about 20 organizations have been hit by a cybercrime group it tracks as UNC6040.

Jun 4, 2025 By Matt Kapko

The Russian flag flies at the embassy’s compound in Washington, DC, on April 15, 2021. (Photo by MANDEL NGAN/AFP via Getty Images)

Multi-national warning issued over Russia’s targeting of logistics, tech firms

The campaign traces back at least to early 2022, coinciding with the start of Russia’s full-scale invasion of Ukraine.

May 21, 2025 By Greg Otto

Russian soldiers stand on Red Square in central Moscow on September 29, 2022, as the square is sealed prior to a ceremony of the incorporation of the new territories into Russia. (Photo by ALEXANDER NEMENOV/AFP via Getty Images)

Russia-aligned threat groups dupe Ukrainian targets via Signal

Google researchers say multiple Russian state threat groups have conducted remote phishing operations to target and compromise Signal accounts.

Feb 19, 2025 By Matt Kapko

(Photo by John Smith/VIEWpress/Getty Images)

Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts

Suspected Russian nation-state threat groups have duped multiple victims into granting potentially persistent access to networks via authentication requests and valid tokens.

Feb 14, 2025 By Matt Kapko

U.S. President Joe Biden and then-Republican presidential candidate, former U.S. President Donald Trump, participate in the CNN Presidential Debate at the CNN Studios on June 27. (Photo by Justin Sullivan/Getty Images)

Biden cyber executive order gets mostly plaudits, but its fate is uncertain

At least one key Republican told CyberScoop that he wasn’t happy about the last-minute nature of the EO.

Jan 16, 2025 By Tim Starks Derek B. Johnson

A picture taken on March 23, 2022 in Moscow shows the US instant messaging software Whatsapp logo on a smartphone screen.(Photo by -/AFP via Getty Images)

Microsoft catches Russian state-sponsored hackers shifting tactics to WhatsApp

Star Blizzard, known to be part of Russia’s FSB, moved schemes to the messaging platform last November.

Jan 16, 2025 By Greg Otto

An Egyptian Fisherman holds a fishing net on the waters of the Pharaonic Sea in the village of Kafr Fisha, province of Monufia, in 2019. (MOHAMED EL-SHAHED/AFP via Getty Images)

Microsoft seizes websites tied to Egypt-based DIY phishing kit-maker

The kits, which the company said were a sophisticated approach to bypassing multifactor authentication, pose a particular threat to the financial services sector.

Nov 21, 2024 By Tim Starks

Federal CISO Mike Duffy speaks during CyberTalks in Washington, D.C., on Oct. 30, 2024. (Scoop News Group photo)

Threat awareness, cloud security, quantum computing among chief agency cyber policy priorities ahead

The interim Federal Chief Information Security Officer spelled out some 2025 agenda items for feds at CyberTalks.

Oct 30, 2024 By Tim Starks

LONDON,ENGLAND – MARCH 21: (Editors note: The email address has been pixelated) In this photo illustration a spam ‘Phishing’ email is displayed on a laptop screen on March 21,2022 in London,England. (Photo by Peter Dazeley/Getty Images)

Here’s how attackers are getting around phishing defenses

Data from Egress looks at how hackers are successfully evading email security filters.

Oct 16, 2024 By Christian Vasquez