Skip to main content

Tag: phishing campaign

13 articles

Business professional sits at computer with blurred screen in typical workspace.

Phishing Campaign Exploits Font File to Deploy Lua Loader

Beware of a sneaky phishing campaign that's using cleverly disguised font files to deploy a powerful Lua Loader - a stark reminder that security controls can't always trust a file's extension. A recent Fortinet analysis reveals the tactics used by attackers to hide malicious JavaScript payloads in seemingly harmless archives.

Analyst 207
A typical office cubicle with a laptop and stack of blank greeting cards on the desk.

Phishing Campaign Exploits eCards to Deploy Legitimate RMM Tools

A massive six-month phishing campaign, dubbed SeasonalInvite, used fake electronic greeting cards to trick victims into installing legitimate remote monitoring and management software on their devices. Over 959 domains were used in this scam, which went undetected from January to June 2026.

Analyst 207
Office worker sits at desk with laptop and printer in background.

FortiGuard Labs Exposes Sophisticated Phishing Campaign Targeting Windows Users

Beware of a sneaky phishing campaign that's targeting Windows users with a multi-stage attack chain, starting with a seemingly harmless email attachment that unleashes a powerful malware. This stealthy threat uses clever tactics like process hollowing to inject malicious code into trusted Windows processes.

Analyst 207
Brightly-lit office desk near a window with a computer screen or email inbox in the foreground.

Microsoft Uncovers Large-Scale Phishing Campaign Using Fake Compliance Emails

In just 48 hours, a massive phishing campaign targeted over 35,000 users across 13,000 organizations in 26 countries, using convincing fake compliance emails to steal login credentials. The sophisticated attack, detected by Microsoft's Defender Research team, hit US firms hard, but its global reach was widespread.

Analyst 207
Person in background looks concerned at a piece of paper near a computer workstation.

Phishing Campaign Exploits Signed RMM Software to Plant Persistent Backdoors

A long-running phishing campaign has compromised over 80 US organizations by using legitimately signed remote monitoring software to install silent, persistent backdoors, according to Securonix research. The attack begins with a clever email impersonating the US Social Security Administration, tricking victims into downloading malicious payloads.

Analyst 207
Laptop workstation in a brightly-lit hospital corridor with medical equipment and computers in the background.

Microsoft Exposes Large-Scale Phishing Campaign Targeting 35,000 Users Worldwide

A massive phishing campaign targeting over 35,000 users worldwide has been uncovered, using sophisticated email templates that convincingly masquerade as legitimate internal communications. The highly convincing lures successfully hit organizations across 26 countries, with a staggering 92% of targets based in the US.

Analyst 207
Well-lit IT workstation with computer screens and equipment in a small business network operations area.

Phishing Campaign Exploits Legitimate RMM Tools to Hit 80+ Orgs

A sneaky phishing campaign has infiltrated over 80 organizations, mostly in the US, by exploiting legitimate remote monitoring and management (RMM) tools like SimpleHelp and ScreenConnect. The attackers cleverly used customized versions of these tools, already installed by the victims, to bypass defenses and gain unauthorized access.

Analyst 207
Person at desk looks at laptop with Microsoft Teams on screen, background webpage blurred.

Google Exposes Microsoft Teams Phishing Campaign Using Custom Snow Malware

Beware of scammers posing as helpdesk heroes! They'll flood your inbox with spam, then reach out on Microsoft Teams with a fake fix that actually steals your password using custom Snow malware.

Analyst 207
LastPass Warns: Critical Phishing Steals Master Passwords

LastPass Warns: Critical Phishing Steals Master Passwords

If you get a frantic LastPass email demanding a 24‑hour backup, pause — its a phishing campaign trying to steal your master password, the single key that unlocks everything in your vault. Never click the links or enter your master password — LastPass will never ask for that.

Analyst 207
Lapsus$ Hunters Pose Dangerous, Exclusive Threat to Zendesk

Lapsus$ Hunters Pose Dangerous, Exclusive Threat to Zendesk

Patchable missteps meet crowd‑powered coercion: Scattered Lapsus$ Hunters are resurfacing with new phishing domains and social‑engineering tricks aimed at support tools like Zendesk. Compromised help‑desk credentials can give attackers an exclusive backdoor into customer and corporate data—so small lapses can have big consequences.

Analyst 207
HttpTroy Exclusive: Dangerous VPN Invoice Backdoor in Korea

HttpTroy Exclusive: Dangerous VPN Invoice Backdoor in Korea

HttpTroy exposes a dangerous VPN invoice backdoor in Korea. Find out how attackers are slipping into billing systems and what you can do to stay protected.

Analyst 207
MuddyWater Exclusive: Dangerous Global Phishing Campaign

MuddyWater Exclusive: Dangerous Global Phishing Campaign

Get an exclusive look at the dangerous global MuddyWater phishing campaign—how it operates, who it targets, and simple, practical steps you can take today to stay protected.

Analyst 207
Iran-Linked MuddyWater Exclusive: Damaging 100+ Targets

Iran-Linked MuddyWater Exclusive: Damaging 100+ Targets

Imagine one hijacked mailbox becoming the battering ram: Iran‑linked MuddyWater used a trusted account, attacker‑controlled VPNs and the Phoenix backdoor to quietly worm into 100+ MENA government networks and siphon sensitive policy and personnel intelligence over months.

Analyst 207