Tag: #PhishingAttack
The ClickFix attack is a sophisticated phishing campaign that impersonates Booking.com to deliver infostealers and Remote Access Trojans (RATs) to hospitality workers. This phishing attack specifically targets individuals in hospitality organizations in North America, Oceania, South and Southeast Asia, and Northern, Southern, Eastern, and Western Europe, who are most likely to work with Booking.com. Attackers […]
The Microsoft device code phishing attack is a sophisticated cyber threat that manipulates the OAuth device authorization flow to bypass multi-factor authentication (MFA) and gain unauthorized access to Microsoft 365 accounts. According to recent cybersecurity reports, over 55% of phishing attacks in 2024 have targeted Microsoft 365 users, emphasizing the growing vulnerability of cloud-based authentication […]
Update, Feb.10, 2025: This story, first published on February 4, has been updated with insights from a security expert who compares the ease of executing these attacks to assembling flat-pack furniture. Furthermore, it includes new Gmail security recommendations from Google to help mitigate these threats. Gmail security has come under threat as cybercriminals employ artificial […]