Browsing: Social Engineering

The Most Advanced ClickFix Page Yet: What It Signals About the Future of Malicious Copy-and-Paste Attacks

Kirsten DoyleNovember 10, 20256 Mins Read

ClickFix attacks have exploded over the last year, evolving into one of the most effective forms of social engineering seen…

When Culture Clicks the Wrong Link: Re-thinking the Human Factor in Cybersecurity

Steve PrenticeOctober 15, 20256 Mins Read

When it comes to cyber-related crimes such as data breaches and deepfakes, none of us must look very far for…

AI Agents Open a New Front in Cybersecurity: ForcedLeak in Salesforce Agentforce

Kirsten DoyleSeptember 30, 20256 Mins Read

Noma Labs has uncovered a severe flaw in Salesforce’s Agentforce platform. The chain of vulnerabilities, dubbed ForcedLeak, carried a CVSS…

FileFix In The Wild: Phishing Campaign Hides Malware Inside Photographs

Kirsten DoyleSeptember 17, 20258 Mins Read

Acronis’ Threat Research Unit has found something new and worrying: a FileFix campaign operating in the wild that does not…

Fortinet Uncovers Phishing Campaign Targeting Companies via UpCrypter

Katrina ThompsonAugust 27, 20254 Mins Read

Researchers recently uncovered a worldwide phishing scam that leverages highly convincing phishing emails to deliver a malware dropper called UpCrypter.…

Workday Confirms Data Breach After Social-Engineering Attack on Third‑Party CRM

Kirsten DoyleAugust 19, 20255 Mins Read

Workday, a cloud-based platform used for human capital managment and financial management, has disclosed a data breach after attackers gained…

FileFix Phishing Attack Exposes Glaring Weaknesses in Browser Extensions

Josh Breaker RolfeJuly 24, 20253 Mins Read

A newly discovered phishing campaign dubbed “FileFix” is raising serious alarms in the cybersecurity community, building on the notorious ClickFix…

Taming Repeat Clickers: Managing High-Risk Cyber Behaviors

Erich KronJuly 16, 20255 Mins Read

Of all the battles against phishing and social engineering attacks, organizations have a silent and underestimated security threat: the repeat…

SVG Smuggling: How Malicious Images Are Hijacking Browsers

Kirsten DoyleJuly 16, 20254 Mins Read

Threat actors have a new trick: hiding malicious JavaScript inside what looks like an innocent image, according to the Ontinue…

Stolen Identities Now the Biggest Threat in Cybersecurity

Kirsten DoyleJuly 8, 20258 Mins Read

The biggest threat to your business may no longer be malware or ransomware. It’s your people. Or rather, their identities.…