This fake Google Security check can steal your passwords. Here’s how to stay safe

A new phishing campaign is impersonating Google’s account security checks to trick users into installing a malicious web app that steals passwords, passcodes, and other sensitive data directly from ...
CSO Online

OAuth phishers make ‘check where the link points’ advice ineffective

Microsoft has identified a phishing campaign using malformed links to legitimate OAuth services to redirect to malware ...
Security Boulevard

Attackers abuse OAuth’s built-in redirects to launch phishing and malware attacks

Researchers have found that attackers are abusing OAuth to send users from legitimate Microsoft or Google login pages to phishing sites or malware downloads.
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...

Give your old PC a boost with these 9 lightweight apps

If your PC struggles to handle modern software, you'll fare much better with these lighterweight alternatives.
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...
PCMag Australia

106 Next Level iPhone Tricks: Move Your Keyboard, Take Long Screenshots, and More

Think you know iOS inside out? Well, think again. Unlock your iPhone's full potential with these hidden tweaks.
Cybernews

AI-driven hacking uses booking.com and Microsoft Teams in vibe coding and “flat pack” malware campaigns

AI is helping cybercriminals to rapidly assemble malware with flat-pack efficiency. It’s almost like buying a sofa from Ikea, ...

Do Water Filter Pitchers Work on PFAS? How to Check Claims

Checking up on the claims of water filter makers can be a discomfiting maze. Here's how to verify independent water filter ...
The Hacker News

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

APT28 exploited CVE-2026-21513, an MSHTML zero-day (CVSS 8.8), using malicious LNK files to bypass security controls and execute code.
PCGamesN

DBD codes March 2026

March 5, 2026 We checked for new DBD codes and verified our list. What are the latest DBD codes? These freebie-granting DBD rewards can reward you with anything from a few bonus Bloodpoints to help ...