OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...

Compromised cPanel credentials are being sold in bulk across underground channels as plug-and-play phishing and scam infrastructure. Flare explains how analyzing 200,000 underground posts reveals a ...

An AI assistant can quickly turn into a malicious insider, so be careful with permissions.

How to set up Private DNS mode on your iPhone - and why you should do it ASAP ...

With the expansion of ThreatLocker’s deny-by-default approach to the cloud and mobile announced Thursday, the cybersecurity vendor is addressing one of the biggest challenges faced by MSPs today, CEO ...

Threat actors are abusing the special-use ".arpa" domain and IPv6 reverse DNS in phishing campaigns that more easily evade ...

New hacking cluster exploits web servers and Mimikatz to infiltrate Asian infrastructure for long-term espionage in aviation, ...

PCWorld reports that AI-powered phishing scams now use personalized data from breaches and social media to create convincing ...

A recent incident led Microsoft to identify an issue with its Exchange Online service that mistakenly flagged legitimate emails as phishing and quarantined them. "Some users' legitimate email messages ...

The remaining Department of Justice files on Jeffrey Epstein include the revelation that one of the pedophile’s victims was just nine years old and that a senior official in a foreign government was ...

This transcript was created using speech recognition software. While it has been reviewed by human transcribers, it may contain errors. Please review the episode audio before quoting from this ...