CISA KEV watch - active exploitation added to the feed CVE desk monitoring new vendor advisories Patch priority elevated for internet-facing systems Threat intelligence update - credential theft campaign observed Suspicious email reported before credentials were stolen Employee defeated a cybercriminal by reporting fast Team stopped a phishing attempt before it spread Phishing trend watch - AI-written lures increasing Social engineering alert - fake CAPTCHA flow detected Identity risk watch - password reset lure spreading Security team closed the loop with instant feedback Quick reporting helped protect the company Security awareness bulletin sent to managers Attackers impersonating trusted business apps Cloud account takeover attempts trending upward MFA fatigue attempts flagged by help desk Inbox report turned into a teachable moment Managers reinforced reporting culture in minutes Follow-up training delivered to exposed users New exploit proof of concept circulating online Security operations reviewing suspicious login patterns Smishing kit activity observed across mobile users Business email compromise signals under review Employee reported a fake invoice before approval SOC confirmed no credentials were submitted CISA known exploited vulnerabilities feed under review Ransomware affiliate infrastructure observed Phishing simulation insight turned into coaching CISA KEV watch - active exploitation added to the feed CVE desk monitoring new vendor advisories Patch priority elevated for internet-facing systems Threat intelligence update - credential theft campaign observed Suspicious email reported before credentials were stolen Employee defeated a cybercriminal by reporting fast Team stopped a phishing attempt before it spread Phishing trend watch - AI-written lures increasing Social engineering alert - fake CAPTCHA flow detected Identity risk watch - password reset lure spreading Security team closed the loop with instant feedback Quick reporting helped protect the company Security awareness bulletin sent to managers Attackers impersonating trusted business apps Cloud account takeover attempts trending upward MFA fatigue attempts flagged by help desk Inbox report turned into a teachable moment Managers reinforced reporting culture in minutes Follow-up training delivered to exposed users New exploit proof of concept circulating online Security operations reviewing suspicious login patterns Smishing kit activity observed across mobile users Business email compromise signals under review Employee reported a fake invoice before approval SOC confirmed no credentials were submitted CISA known exploited vulnerabilities feed under review Ransomware affiliate infrastructure observed Phishing simulation insight turned into coaching

PhishingBox Newsroom

Cybersecurity News - Page 19

Threat trends, product updates, and security insights from the PhishingBox team.

Security Awareness Training

New & Updated Phishing Email Templates

Over the past few weeks, we have been overhauling our phishing email template library. We've sorted through the library and organized our templates based on attack type and difficulty.

Mar 15, 2021 Read Article

Phishing

Local Election Officials Targeted with Suspicious Email

A report in the Wall Street Journal on October 26th described incidences of election officials within the U.S. at the local level being sent suspicious emails which appear to be purposefully targeting them due to their position within their states.

Oct 27, 2020 Read Article

Phishing

CenturyLink Outage Affecting 3.5% of the Internet

n Sunday August 30th, 2020 CenturyLink suffered a major outage which affected numerous internet companies including Amazon, Twitter, Microsoft via Xbox Live, EA, Blizzard, Steam, Discord, Reddit, Hulu, NameCheap, OpenDNS, and many others including PhishingBox.

Sep 02, 2020 Read Article

Phishing

New Experiment in Google Chrome to Fight Back Against Phishing Websites

The developers behind the Google Chrome browser have announced in a blog post that they will begin testing a new way to help defend against the increasing threat of phishing attacks.

Aug 21, 2020 Read Article

Phishing

New Research Finds That 7.42% Of Victims Who Visit Phishing Sites Supply Their Credentials

In a new report from the combined efforts of Arizona State University, PayPal, Google, and Samsung, researchers found that at least 7.42% of victims who visit phishing pages input their credentials resulting in compromised accounts and experience fraudulent transactions as a result.

Aug 04, 2020 Read Article

Phishing

LastPass Customers Receive Phishing Email In Attempt to Steal Master Password

In an effort to inform and defend customers, LastPass warned that there had been reports of a Phishing email that was being sent to users using the LastPass platform.

Jul 21, 2020 Read Article

Phishing

Microsoft Warns About Consent Phishing Applications

A new post by the Microsoft security team warns about a new type of phishing attack vector targeting users. Consent Phishing, as they refer to it as, targets users by asking for an egregious amount of permissions from Single-Sign-On allowing the bad actors to abuse the accounts they have been granted access to.

Jul 10, 2020 Read Article

Phishing

New Phishing Attempt on Instagram for Fake Copyright Violations

Instagram users should be on the lookout for fake copyright notices that have emerged as a new way to try and phish people into handing over the credentials of their accounts. As reported by

Jun 30, 2020 Read Article

Phishing

Office 365 Users Targeted with Hijacked Oxford Servers using Samsung and Adobe links

As reported by Checkpoint Research, European users of Office 365 have been targeted with phishing emails sent from seemingly legitimate sources after bad actors hijacked Samsung's

Jun 22, 2020 Read Article

Previous Next

Simulate realistic phishing attacks at the speed of AI, train users, and measure risk with AI Powered Insights.

Cybersecurity News - Page 19

Cybersecurity News