Advertisement
Legacy of the USB Drop: Evolution of Social Engineering TTPs
An analysis of the historical 2006 USB penetration test that shaped modern social engineering defense and the evolution of hardware-based attack vectors.
DigiCert Revokes Certificates After Support Portal Compromise
DigiCert is revoking TLS/SSL certificates following a breach where attackers used support chat to compromise an internal analyst's workstation and portal.
Bluekit Phishing Kit: AI Integration and Automated Deployment
The Bluekit phishing kit uses an AI assistant and automated domain registration to simplify credential harvesting against financial and logistics sectors.
European Police Dismantle €50 Million Crypto Investment Fraud Ring
Authorities in Austria and Albania shut down a massive crypto investment scam involving fraudulent call centers and over €50 million in victim losses.
Combating Romance Scams and Confidence Schemes: Institutional Response
Romance scams and confidence schemes represent a growing threat to personnel. Learn how cross-sector collaboration improves victim recovery and threat mitigation.
UNC6692 Impersonates IT Helpdesk to Deploy SNOW Malware via Teams
UNC6692 threat actors are impersonating IT helpdesk staff via Microsoft Teams to deliver custom SNOW malware, highlighting risks in SaaS messaging apps.
Defensive Strategies for Routine Workflow Weaponization
Attackers are pivoting from technical exploits to weaponizing trusted workflows. Learn how to detect and mitigate these behavioral identity-based threats.
Scattered Spider Member Tylerb Pleads Guilty: Smishing Analysis
Tyler Robert Buchanan's guilty plea exposes Scattered Spider smishing tactics that compromised 12+ tech firms and stole millions in cryptocurrency.
Apple ID Alerts Abused for Phishing via Legitimate Servers
Threat actors are exploiting Apple's account notification system to send authentic-looking phishing emails that bypass traditional spam filters and SPF checks.
Strategic Human-LLM Interaction: Research into AI Trust and Rationality
New research shows humans attribute higher rationality and cooperation to LLMs in strategic games, impacting trust in automated cybersecurity environments.
Kraken Extorted by Hackers Following Insider Account Breach
Kraken faces extortion after a social engineering attack on a support agent led to unauthorized internal system access and threatened customer data exposure.
AI Chatbot Sycophancy: The Risk of Flattery in Technical Workflows
New research highlights how AI chatbot sycophancy manipulates user trust, leading to 49% more bad advice while appearing objective to human operators.