Phishing attack – Securitydive

Hackers Abuse Google Tasks Notifications in Sophisticated Phishing Attacks

Attackers abused Google Cloud Application Integration to send phishing emails from legitimate Google domains Emails mimicked Google notifications, redirecting victims through trusted services Nearly 3,200 businesses targeted; most victims in U.S. manufacturing, tech, and finance sectors Over 3,000 organizations fell victim to a sophisticated phishing campaign in December 2025 that weaponized Google’s legitimate application infrastructure…

OpenAI Confirms Data Breach—Here’s Who Is Impacted

admin2 months ago04 mins

OpenAI said a Mixpanel breach exposed API user metadata—and urged customers to watch for phishing attacks. Mixpanel said an attacker accessed part of its systems and exported customer-identifiable metadata. OpenAI said no prompts, API keys, payment information, or authentication tokens were involved. Both companies reviewed the incident, notified affected users, and outlined new security steps…

New Microsoft O365 Phishing Attack Uses AES & Malicious npm Packages to Steal Login Credentials

admin8 months ago8 months ago03 mins

A sophisticated phishing campaign targeting Microsoft Office 365 users has emerged, combining several advanced techniques to evade detection and harvest credentials. The attack, identified in early April 2025, leverages encrypted HTML files, content delivery networks (CDNs), and malicious npm packages in a multi-stage approach that cybersecurity experts describe as unusually complex for typical phishing operations….

Mphasis Launches Cyber Fusion Center in Bangalore to Boost Global Cybersecurity Capabilities

admin1 year ago05 mins

Mumbai , December 4, 2024: Mphasis, (BSE: 526299; NSE: MPHASIS), an Information Technology (IT) solutions provider specializing in cloud and cognitive services, today announced the inauguration of its new Cyber Fusion Center in Bangalore, India. This cutting-edge facility is designed to offer 24×7 advanced threat detection, incident response, and continuous threat monitoring for global clients across industries, helping organizations navigate the…

Shadowroot Ransomware Lures Turkish Victims via Phishing Attacks

admin2 years ago02 mins

The ransomware is rudimentary with basic functionalities, likely having been created by an inexperienced developer — but it’s effective at locking up files and sucking up memory capacity. A ransomware strain coined “ShadowRoot” has been found targeting Turkish businesses through phishing attacks. The phishing emails contain a PDF attachment disguised as an invoice with embedded…