Phishing - The CyberSignal

Minimalist vector art showing a fishing hook pulling malware from an automation node.

Cyber Attacks

Attackers Weaponize n8n Webhooks to Automate Malware Distribution

Security researchers have identified a persistent campaign abusing the popular workflow automation tool n8n to deliver sophisticated malware via phishing emails, bypassing traditional gateway filters. LONDON — Since October 2025, a sophisticated threat actor has been exploiting the webhook functionality of n8n, an open-source workflow automation platform, to facilitate a global

15 Apr 2026

Minimalist vector art of a notification bell with a red fishhook clapper, representing the abuse of SaaS notifications for phishing.

Trending

Attackers Abuse GitHub and Jira Notification Systems to Bypass Email Security Filters

Threat actors are increasingly leveraging the inherent trust of major SaaS platforms to deliver phishing lures directly through legitimate system-generated alerts. SAN FRANCISCO, CA — Security researchers have identified a sophisticated shift in phishing tactics, where attackers are bypassing traditional email gateways by abusing the automated notification systems of GitHub and

13 Apr 2026

Minimalist vector art of a hotel bed icon under a magnifying glass revealing a warning symbol, representing the Booking.com data breach investigation.

Data Breaches

Booking.com Confirms Global Data Breach Affecting Reservation Details

The world’s largest travel platform has issued an urgent warning to customers after an unauthorized third party accessed sensitive booking information, triggering a massive wave of targeted phishing attacks. AMSTERDAM, Netherlands — Booking.com has confirmed a significant data security incident that has exposed the personal details and travel itineraries

13 Apr 2026

Trending

Microsoft 365 Users Targeted by AI-Augmented EvilTokens Phishing Service

A novel Phishing-as-a-Service platform is leveraging Microsoft's device code flow to bypass multi-factor authentication and automate business email compromise at scale. REDMOND — Security researchers have identified a surge in high-velocity phishing campaigns powered by a new service called "EvilTokens." The platform specifically targets Microsoft 365 environments

09 Apr 2026

Flat vector illustration on navy blue. A white file cabinet has an electric yellow line representing sensitive legal data being pulled up by a grey hook.

Data Breaches

Jones Day Discloses Data Breach Affecting 10 Clients Following Phishing Attack

Jones Day, one of the world's largest law firms, has confirmed that a targeted cyberattack resulted in unauthorized access to sensitive files belonging to 10 of its clients. The breach, which the firm describes as "limited" in scope, was carried out via a sophisticated phishing campaign

07 Apr 2026

Editorial illustration of a gray computer monitor with a jagged static X on the crimson background, symbolizing the urgent HUIT security alert and phishing raid targeting Harvard University.

Cyber Attacks

Harvard University Issues Urgent Alert Following Sophisticated Campus-Wide Phishing Campaign

Harvard University’s Information Technology (HUIT) department has issued a high-priority security alert following a "brazen" and targeted cyber campaign aimed at students, faculty, and staff. The university, which serves as a global hub for high-value research and intellectual property, is currently navigating a sophisticated social engineering raid

06 Apr 2026

Editorial cover with a red digital skull and hacker surrounded by icons of malware, phishing emails, ransomware, and a Bitcoin bomb, representing the 2026 cyber threat landscape.

Cybersecurity 101

Most Common Cybersecurity Threats for Organizations in 2026

Modern organizations operate in a digital environment where cyber threats are becoming more frequent, sophisticated, and financially damaging. As businesses increasingly rely on cloud environments, connected devices, and digital services, the number of cybersecurity threats targeting organizations continues to grow. Cybersecurity threats are acts performed by individuals or groups with

28 Mar 2026

Digital monitor displaying employee payroll and HR data being intercepted by a red fishing hook, representing an unauthorized access incident to corporate systems.

Data Breaches

Starbucks Discloses Data Breach Affecting Hundreds of Employees

Starbucks has disclosed a cybersecurity incident that exposed sensitive personal information belonging to hundreds of employees after attackers gained unauthorized access to internal HR accounts. The company confirmed that 889 employee accounts were compromised following a phishing campaign targeting its internal workforce portal, based on breach notification filings submitted to

15 Mar 2026

Medium-close-up of a smartphone showing a split screen: a real-looking bank login on the left and malicious green code with the word 'SCAM' on the right to illustrate phishing deception.

Cybersecurity 101

Essential Guide to Phishing: Identify and Protect Yourself from Scams

Phishing is among the most pervasive threats to organizational and personal security today. Effective defense now requires much more than just robust firewalls and encryption. As technical security measures become more robust, cybercriminals have shifted their focus toward the weakest link in the security chain: the human element. Mobile devices,

09 Mar 2026

A dark, cloaked arm reaches out to manipulate a translucent human figure with glowing strings against a backdrop of binary code, symbolizing psychological manipulation.

Cybersecurity 101

What Is Social Engineering? The Psychology Behind Cyber Attacks

Social engineering is one of the most dangerous and persistent threats in cybersecurity. Social engineering is the term used for a broad range of malicious activities accomplished through human interactions. It relies on psychological manipulation rather than technical vulnerabilities to deceive victims. This guide is for individuals and organizations seeking

09 Mar 2026

Gemini said A hooded figure sits in a dark room facing three large monitors displaying global maps and red digital code, illustrating a cyber threat actor at a workstation.

Cybersecurity 101

What Is a Threat Actor in Cybersecurity?

Understanding the concept of a threat actor is crucial for anyone concerned with cybersecurity. This article covers the definition, types, motivations, attack methods, and defense strategies related to threat actors in cybersecurity. It is designed for security professionals, IT staff, and anyone interested in cybersecurity threats. Threat actors are individuals

07 Mar 2026