Lidl Breach Highlights Perils of Third-Party Data Dependencies
A breach at a third-party IT vendor has exposed personal data of Lidl customers, forcing a security alert across multiple countries.
19 results for “phishing”
A breach at a third-party IT vendor has exposed personal data of Lidl customers, forcing a security alert across multiple countries.
A Telegram-based phishing service is lowering barriers to entry for M365 attacks by automating complex bypass and exfiltration workflows.
Federal authorities are hunting two state-linked cyber groups behind a persistent, large-scale campaign targeting Signal and WhatsApp.
Threat actors are weaponizing reservation-themed emails with container files to bypass modern Microsoft Office security protections.
A third-party security failure exposed customer data, forcing the retail giant to warn users about the heightened risk of phishing attacks.
A breach at Nelnet Servicing has compromised the personal information of millions, creating a prime target for future phishing.
Quishing attacks are weaponizing QR codes to bypass traditional security, creating a sophisticated new pathway for account hijacking.
Researchers identify over 130 firms compromised in a sprawling campaign that successfully bypassed traditional MFA protections.
A new subscription-based phishing service leverages device code theft and AI to bypass traditional security defenses.
A security incident at an IT service provider has resulted in the exposure of personal data for Lidl online shoppers across three countries.
A sophisticated China-based actor is leveraging watering hole tactics and keylogging to compromise targets across the maritime sector.
A single exposed directory reveals how multiple threat actors leverage AiTM tools and OAuth abuse to compromise corporate accounts.
A recent security breach at the Miinto platform has left shoppers facing an increased risk of targeted phishing attacks.
A simple configuration blunder by an attacker unraveled three sophisticated, bypass-capable phishing campaigns targeting Microsoft 365.
Two British teenagers plead guilty, exposing the massive operational and financial toll of the notorious Scattered Spider hacking syndicate.
As police narrow in on domestic suspects behind the Odido data breach, the incident highlights the devastating efficacy of voice phishing.
Reduced summer IT staffing creates critical security gaps, which cybercriminals exploit through slower responses and diminished oversight, escalating risks.
Forg365, a sophisticated phishing-as-a-service platform, now combines AI-assisted lure generation with advanced AiTM and device code methods to compromise Microsoft 365 accounts and maintain persistent access.
A sophisticated new group named Helix leverages identity-based phishing and MFA abuse to infiltrate corporate SharePoint environments, exfiltrating sensitive data for extortion or sale.