Cybersecurity researchers at Barracuda uncovered GhostFrame, a slick phishing-as-a-service (PhaaS) kit, back in September 2025.
By early December, it powered over a million attacks worldwide. This kit hides its malice in plain sight by loading phishing content via an invisible iframe on a basic...
Cybercriminals are exploiting Microsoft Teams notifications to push callback phishing scams, tricking users into calling fake support lines.
These attacks use legitimate-looking invites from the official Teams sender address, no-reply@teams.mail.microsoft, which often slips past email filters and user caution.
Recent alerts from Trustwave's SpiderLabs...
A dramatic surge in identity-based cyberattacks has fundamentally transformed the threat landscape, with new research revealing a staggering 156% increase in identity-driven threats between 2023 and 2025.
According to eSentire's Threat Response Unit (TRU), these attacks now account for 59% of all confirmed threat...
In a worrying escalation of cyber threats, Indian defense personnel have become the latest target of a sophisticated espionage campaign orchestrated by APT36, also known as Transparent Tribe a Pakistan-based cyber-espionage group.
According to recent findings by cybersecurity firm CYFIRMA, the group has launched...
A sophisticated and fast-evolving phishing campaign, linked to the prolific threat group “Scattered Spider” (also known as UNC3944 and Octo Tempest), is actively targeting IT helpdesk personnel at technology vendors and managed service providers (MSPs).
Leveraging highly tailored social engineering, advanced phishing kits, and...
Netskope Threat Labs tracked an alarming surge in phishing activity leveraging the Glitch web app platform. Attackers exploited Glitch’s free hosting and instant deployment features to launch hundreds of unique phishing sites, targeting over 830 organizations and compromising data from more than 3,000 individuals....