phishing attacks

If you thought your inbox was dangerous before, wait until you meet the humble .library-ms file, reimagined as the ultimate digital Trojan horse. If there’s one thing we’ve all learned from years of increasingly creative phishing attacks, it’s that cybercriminals will use any means possible to...

North winds carry more than just Poland’s infamous cold: as March 2025 would have it, they swept in a fresh surge of NTLM hash theft, thrusting CVE-2025-24054 into the glaring spotlight of cybersecurity’s main stage. Weeks before most CIOs had even had their coffee, threat actors were already...

Inside the New Wave of Cyberattacks Exploiting Microsoft Teams to Infect Windows PCs Microsoft Teams has become indispensable in modern workplaces, a hub for collaboration and communication. Yet, this very platform trusted by millions has transformed into a battleground where hackers wage...

A Closer Look at the Evolved Microsoft 365 Phishing Kit Cybersecurity experts have recently raised the alarm on a significantly upgraded Microsoft 365 phishing kit that is raising the stakes in today's cybercrime landscape. The notorious Tycoon2FA platform, a phishing-as-a-service (PhaaS) tool...

Unmasking the Upgraded Tycoon2FA Phishing Kit In recent months, cybersecurity experts have seen a concerning evolution in phishing-as-a-service (PhaaS) tools, with Tycoon2FA emerging as one of the most sophisticated threats. Once infamous for bypassing multi-factor authentication (MFA) on...

Hackers have upped their game again, and the latest twist in the phishing saga has Windows and Microsoft 365 users on high alert. Phishing scams that once relied on crude copies of login pages now come with professional-grade features—think of them as “phishing-as-a-service” (PhaaS) offerings...

A recent research report—cited by Computing as highlighting a “massive spike” in phishing-as-a-service (PhaaS) attacks in 2025—paints a stark picture of the evolving cybersecurity landscape. Although the original Computing article page may be unavailable, the implications are clear...

In today's rapidly evolving cybersecurity landscape, Microsoft 365 environments are facing a new breed of sophisticated attacks that exploit one of the most trusted authentication methods—OAuth. Recent investigations have revealed that threat actors are leveraging fake OAuth applications...

In today’s threat landscape, Windows users and Microsoft 365 administrators face increasingly sophisticated tactics from cybercriminals, who are now exploiting trusted workflows to compromise sensitive organizational data. Recent findings reveal that malicious actors are spoofing popular work...

In a twist straight out of a cyber espionage thriller, threat actors—potentially linked to Russian interests—have been abusing Microsoft’s device code authentication flow to hijack Microsoft 365 accounts. This sophisticated phishing campaign, tracked by Microsoft’s threat intelligence team as...

A clever new breed of phishing scam is on the rise and it's catching even the savviest users off guard. Researchers have uncovered a sustained campaign where Russian spies are using a technique known as "device code phishing" to gain unauthorized access to Microsoft 365 accounts. Windows users...

On November 12, 2024, Microsoft published critical information concerning a newly identified vulnerability in Microsoft Exchange Server, designated as CVE-2024-49040. This specific vulnerability poses a significant risk of spoofing attacks which could allow malicious actors to impersonate both...

In the ever-evolving landscape of cybersecurity, one method of attack has been capturing headlines and drawing alarm bells for security professionals: QR code phishing. In a striking report, Microsoft has announced significant advancements in its Defender for Office 365 to combat this...

Severity Rating: Revision Note: V2.0 (February 11, 2014): Revised advisory to announce that the 2862973 update for all affected releases of Microsoft Windows is now offered through automatic updating. Customers who previously applied the 2862973 update do not need to take any action. Summary...