by Chris Cleveland | Jun 19, 2025 | blog, phish
Early-mid June saw a surge of phishing campaigns targeting Amazon, Microsoft and Netflix accounts, including phishing kits capable of harvesting extensive personal data, like social security numbers and bank access numbers. Many Microsoft-themed attacks...
by Chris Cleveland | Jun 8, 2025 | blog, phish
The end of May and first week of June 2025 saw a sharp uptick in zero-day phishing campaigns targeting corporate login credentials, with additional campaigns impersonating Amazon and even U.S. government login services (ID.me for IRS). Threat actors employed...
by Chris Cleveland | May 29, 2025 | blog, phish
A surge of sophisticated zero-day phishing campaigns was observed in mid-May 2025, targeting a wide range of services including social media, e-commerce, enterprise email, telecommunications, and streaming platforms. Attackers leveraged legitimate cloud...
by Chris Cleveland | May 13, 2025 | blog, phish
The first half of May saw a continued surge in stealthy zero-day phishing attacks bypassing MFA. Between April 25 and May 8, attackers targeted both corporate email accounts (Microsoft 365/Outlook) and personal web services (e-commerce, streaming, personal email) used...
by Chris Cleveland | May 10, 2025 | blog, phish
The beginning of April has seen continued targeting of corporate credentials via stealthy means and file share platforms as well as personal account phishing on work devices, including a marked increase in financial services and Netflix phishing campaigns, often...
by Kim | Apr 4, 2025 | blog, phish
A record spearphish surge continued into the second half of March, particularly via Microsoft and Outlook credentials targeted via fileshare platforms like SharePoint, OneDrive and Green Envelope. Additionally, phishing campaigns targeting users of financial services...
Recent Comments