Darcula was first documented by the cybersecurity company in March 2024 as a toolkit that leveraged Apple iMessage and RCS to send smishing messages to users that trick recipients into clicking on ...

Adversary-in-the-middle fraud (AiTM) represents a significant, ongoing challenge for businesses, with tactics like email hijacking, AI attacks and account takeovers becoming increasingly complex.

Thousands tricked by fake reward & toll scam texts. CTM360 exposes PointyPhish & TollShark—SMS phishing campaigns powered by ...

Phishing-as-a-service (PhaaS) platform Tycoon2FA, known for bypassing multi-factor authentication on Microsoft 365 and Gmail ...

Discover how the Morphing Meerkat phishing kit powers phishing-as-a-service (PhaaS) attacks, evades detection, and how you ...

A sophisticated Phishing-as-a-Service (PhaaS) platform has been identified spoofing over 100 brands to steal credentials, new research from Infoblox Threat Intel has found. The threat actor behind ...

Tycoon 2FA was first spotted in mid-2023, but with the start of 2024, it’s gotten a major upgrade, with the tool using ...

The cybersecurity threat posed by phishing attacks is growing more dangerous as cybercriminals increasingly rely on phishing ...

Cheap ransomware is being sold for one-time use on the Dark Web, allowing inexperienced amateursto get into cybercrime for as little as $25.

Phishing-as-a-service (PhaaS) is also on the rise. These subscription-based services handle everything — from hosting to victim targeting — turning phishing into an organized cybercrime business model ...

These changes aren’t revolutionary, or particularly new in the PhaaS ecosystem, Trustwave stresses. However, when combined, they make detection and analysis a lot more difficult. Tycoon 2FA was ...