Phishing

A speech bubble silhouette with a digital fishing hook snagged on the corner.

phishing

Signal Phishing Campaign Targets Bundestag President Klöckner

Germany’s Bundestag President Julia Klöckner has reportedly become the latest victim of a Signal-based phishing campaign, in which attackers used social-engineering tactics to compromise her encrypted-messaging account and access sensitive group chats. BERLIN, GERMANY — The Federal Office for Information Security (BSI) and the Federal Office for the Protection of

25 Apr 2026

A stylized document silhouette with a digital eye icon centered inside.

Data Leak

Notion Public Pages Leak Collaborators’ Emails and Profile Pictures

Notion pages published to the web may be silently leaking collaborators' email addresses and profile photos, exposing thousands of users and organizations to potential phishing and social-engineering attacks. SAN FRANCISCO, CA — A design-driven privacy vulnerability in Notion's "Publish to web" feature is currently exposing the

25 Apr 2026

A French passport being unzipped on a royal blue background.

Data Breaches

Identity Under Fire: ANTS Portal Breach Exposes Millions to Phishing and Identity Theft

The French National Agency for Secure Documents (ANTS) has confirmed a significant security incident targeting its central portal, as threat actors move to monetize a database allegedly containing millions of sensitive user records. PARIS, FRA — The French government is grappling with a severe compromise of its digital identity infrastructure. The

21 Apr 2026

A laptop and phone with an intercepted authentication code on an orange background.

Digital Identity

Tycoon 2FA Disruption Drives Phishers Toward "Device Code" Exploitation

Following a coordinated global takedown of the Tycoon 2FA infrastructure, decentralized threat actors are abandoning traditional Adversary-in-the-Middle (AiTM) kits in favor of more resilient device code phishing tactics. LONDON, UK — The landscape of Multi-Factor Authentication (MFA) bypass is undergoing a rapid transformation. Just weeks after an international law enforcement operation

19 Apr 2026

An iPhone with a warning and a cloud on a hook, symbolizing the iCloud phishing scam.

Identity Theft

iCloud ‘Storage Full’ Phishing Campaign Returns with Sophisticated Deletion Lures

A global surge in fraudulent Apple alerts is weaponizing the fear of losing personal photos to steal credit card details and Apple ID credentials. CUPERTINO, CA — Apple users worldwide are being urged to exercise extreme caution as a pervasive and highly effective phishing campaign resurfaces. The scam, which utilizes "

16 Apr 2026

A fishing hook stealing a key from a monitor on an emerald green background, representing the YouTube phishing scam.

Identity Theft

Fake YouTube Copyright Alerts Target Creators in Massive Account Hijacking Campaign

A highly sophisticated phishing operation is utilizing hyper-personalized "copyright strike" warnings to bypass security instincts and seize full control of Google accounts and YouTube channels. MOUNTAIN VIEW, CA — A new and alarmingly convincing phishing campaign is currently targeting YouTube creators, leveraging their greatest fear: the sudden loss of

16 Apr 2026

A fishing hook pulling malware from an automation node.

Cyber Attacks

Attackers Weaponize n8n Webhooks to Automate Malware Distribution

Security researchers have identified a persistent campaign abusing the popular workflow automation tool n8n to deliver sophisticated malware via phishing emails, bypassing traditional gateway filters. LONDON — Since October 2025, a sophisticated threat actor has been exploiting the webhook functionality of n8n, an open-source workflow automation platform, to facilitate a global

15 Apr 2026

A notification bell with a red fishhook clapper, representing the abuse of SaaS notifications for phishing.

Trending

Attackers Abuse GitHub and Jira Notification Systems to Bypass Email Security Filters

Threat actors are increasingly leveraging the inherent trust of major SaaS platforms to deliver phishing lures directly through legitimate system-generated alerts. SAN FRANCISCO, CA — Security researchers have identified a sophisticated shift in phishing tactics, where attackers are bypassing traditional email gateways by abusing the automated notification systems of GitHub and

13 Apr 2026

A hotel bed icon under a magnifying glass revealing a warning symbol, representing the Booking.com data breach investigation.

Data Breaches

Booking.com Confirms Global Data Breach Affecting Reservation Details

The world’s largest travel platform has issued an urgent warning to customers after an unauthorized third party accessed sensitive booking information, triggering a massive wave of targeted phishing attacks. AMSTERDAM, Netherlands — Booking.com has confirmed a significant data security incident that has exposed the personal details and travel itineraries

13 Apr 2026

Trending

Microsoft 365 Users Targeted by AI-Augmented EvilTokens Phishing Service

A novel Phishing-as-a-Service platform is leveraging Microsoft's device code flow to bypass multi-factor authentication and automate business email compromise at scale. REDMOND — Security researchers have identified a surge in high-velocity phishing campaigns powered by a new service called "EvilTokens." The platform specifically targets Microsoft 365 environments

09 Apr 2026

Flat vector illustration on navy blue. A white file cabinet has an electric yellow line representing sensitive legal data being pulled up by a grey hook.

Data Breaches

Jones Day Discloses Data Breach Affecting 10 Clients Following Phishing Attack

Jones Day, one of the world's largest law firms, has confirmed that a targeted cyberattack resulted in unauthorized access to sensitive files belonging to 10 of its clients. The breach, which the firm describes as "limited" in scope, was carried out via a sophisticated phishing campaign

07 Apr 2026

A gray computer monitor with a jagged static X on the crimson background, symbolizing the urgent HUIT security alert and phishing raid targeting Harvard University.

Cyber Attacks

Harvard University Issues Urgent Alert Following Sophisticated Campus-Wide Phishing Campaign

Harvard University’s Information Technology (HUIT) department has issued a high-priority security alert following a "brazen" and targeted cyber campaign aimed at students, faculty, and staff. The university, which serves as a global hub for high-value research and intellectual property, is currently navigating a sophisticated social engineering raid

06 Apr 2026

See all