Social Engineering - The CyberSignal

Minimalist vector art of an iPhone with a warning and a cloud on a hook, symbolizing the iCloud phishing scam.

Identity Theft

iCloud ‘Storage Full’ Phishing Campaign Returns with Sophisticated Deletion Lures

A global surge in fraudulent Apple alerts is weaponizing the fear of losing personal photos to steal credit card details and Apple ID credentials. CUPERTINO, CA — Apple users worldwide are being urged to exercise extreme caution as a pervasive and highly effective phishing campaign resurfaces. The scam, which utilizes "

16 Apr 2026

Minimalist vector art of a fishing hook stealing a key from a monitor on an emerald green background, representing the YouTube phishing scam.

Identity Theft

Fake YouTube Copyright Alerts Target Creators in Massive Account Hijacking Campaign

A highly sophisticated phishing operation is utilizing hyper-personalized "copyright strike" warnings to bypass security instincts and seize full control of Google accounts and YouTube channels. MOUNTAIN VIEW, CA — A new and alarmingly convincing phishing campaign is currently targeting YouTube creators, leveraging their greatest fear: the sudden loss of

16 Apr 2026

Minimalist vector art of a notification bell with a red fishhook clapper, representing the abuse of SaaS notifications for phishing.

Trending

Attackers Abuse GitHub and Jira Notification Systems to Bypass Email Security Filters

Threat actors are increasingly leveraging the inherent trust of major SaaS platforms to deliver phishing lures directly through legitimate system-generated alerts. SAN FRANCISCO, CA — Security researchers have identified a sophisticated shift in phishing tactics, where attackers are bypassing traditional email gateways by abusing the automated notification systems of GitHub and

13 Apr 2026

Minimalist vector art of a hotel bed icon under a magnifying glass revealing a warning symbol, representing the Booking.com data breach investigation.

Data Breaches

Booking.com Confirms Global Data Breach Affecting Reservation Details

The world’s largest travel platform has issued an urgent warning to customers after an unauthorized third party accessed sensitive booking information, triggering a massive wave of targeted phishing attacks. AMSTERDAM, Netherlands — Booking.com has confirmed a significant data security incident that has exposed the personal details and travel itineraries

13 Apr 2026

Flat vector art on a textured teal background. A white ID badge icon is center-stage, overlapped by a magnifying glass showing a broken link, symbolizing identity theft and supply chain risk.

Trending

The BPO Gateway: UNC6783’s Social Engineering Blitz Targets the Managed Perimeter

A newly identified threat actor, UNC6783, is bypassing the "front door" of major corporations by targeting Business Process Outsourcing (BPO) firms. By leveraging fake Okta portals and hijacked Zendesk tickets, the group has successfully extorted dozens of high-value targets, exposing a critical failure in the Managed Perimeter. MOUNTAIN

10 Apr 2026

Flat vector illustration on navy blue. A white file cabinet has an electric yellow line representing sensitive legal data being pulled up by a grey hook.

Data Breaches

Jones Day Discloses Data Breach Affecting 10 Clients Following Phishing Attack

Jones Day, one of the world's largest law firms, has confirmed that a targeted cyberattack resulted in unauthorized access to sensitive files belonging to 10 of its clients. The breach, which the firm describes as "limited" in scope, was carried out via a sophisticated phishing campaign

07 Apr 2026

Editorial illustration of a digital login box with multiple keys, symbolizing the credential stuffing attack on PayPal and the vulnerability of reused passwords across financial platforms.

Data Breaches

PayPal Security Advisory: Credential Stuffing and Sophisticated Phishing Targeting Users

PayPal has issued a series of security alerts following a wave of "unconventional" cyberattacks designed to compromise user accounts and exfiltrate sensitive financial data. The payments giant has confirmed that a significant credential stuffing campaign, alongside sophisticated phishing operations, has resulted in the exposure of personal information for

06 Apr 2026

Editorial illustration of a digital silhouetted figure with a red hazard key on a Solana-colored background, representing the $285 million Drift Protocol exploit and social engineering.

Cyber Attacks

Solana-Based Drift Protocol Hit by $285M Exploit Linked to North Korean Infiltration

Drift Protocol, a prominent decentralized exchange (DEX) operating on the Solana blockchain, has been targeted in a massive exploit resulting in the loss of approximately $285 million. Leading blockchain forensic firms, including Elliptic, TRM Labs, and Chainalysis, have attributed the attack to threat actors associated with the Democratic People’s

06 Apr 2026

Editorial illustration of a gray computer monitor with a jagged static X on the crimson background, symbolizing the urgent HUIT security alert and phishing raid targeting Harvard University.

Cyber Attacks

Harvard University Issues Urgent Alert Following Sophisticated Campus-Wide Phishing Campaign

Harvard University’s Information Technology (HUIT) department has issued a high-priority security alert following a "brazen" and targeted cyber campaign aimed at students, faculty, and staff. The university, which serves as a global hub for high-value research and intellectual property, is currently navigating a sophisticated social engineering raid

06 Apr 2026

Editorial illustration of a chat bubble with an open padlock and a DNA strand inside, representing the exposure of personal health-related support data in the Hims & Hers cyberattack.

Data Breaches

Telehealth Giant Hims & Hers Confirms Data Breach via Customer Support System

Hims & Hers Health, Inc., the multi-billion dollar telehealth platform known for its direct-to-consumer wellness products, has disclosed a cybersecurity incident that compromised sensitive customer support data. The company confirmed that unauthorized actors gained access to its third-party support environment earlier this year, leading to the exposure of personal information

03 Apr 2026

A smartphone displays a malicious file icon in a chat bubble, symbolizing the NCSC warning on state-linked malware targeting messaging apps.

Trending

NCSC Issues High-Priority Warning Over State-Linked Messaging App Campaigns

The UK’s National Cyber Security Centre (NCSC), in coordination with Microsoft, has issued an urgent advisory regarding a sophisticated campaign targeting users of encrypted messaging applications. The warning highlights an increase in "highly targeted" social engineering attacks on platforms including WhatsApp and Signal, linked to advanced persistent

02 Apr 2026

Editorial cover with a red digital skull and hacker surrounded by icons of malware, phishing emails, ransomware, and a Bitcoin bomb, representing the 2026 cyber threat landscape.

Cybersecurity 101

Most Common Cybersecurity Threats for Organizations in 2026

Modern organizations operate in a digital environment where cyber threats are becoming more frequent, sophisticated, and financially damaging. As businesses increasingly rely on cloud environments, connected devices, and digital services, the number of cybersecurity threats targeting organizations continues to grow. Cybersecurity threats are acts performed by individuals or groups with

28 Mar 2026

See all