2FA phishing
-
Silver Fox uses ABCDoor malware in phishing campaign targeting India and Russia
Silver Fox used tax-themed phishing emails to target organizations in Russia and India with the ABCDoor backdoor, with more than 1,600 malicious messages flagged in early 2026, according to a technical analysis by Kaspersky.
-
Robinhood fixes account creation flaw used to send phishing emails
Robinhood said attackers abused a flaw in its account creation flow to send phishing emails from a legitimate company address. The company said no customer accounts, personal information or funds were impacted.
-
PhantomCore linked to attacks on TrueConf servers in Russia
PhantomCore has been tied to attacks on TrueConf servers in Russia since September 2025, using three vulnerabilities to run commands remotely and move deeper into victim networks, according to a technical analysis by Positive Technologies.
-
French government agency confirms data breach after hacker claims 19 million records
France Titres, the French agency that issues identity and registration documents, said a security incident may have exposed account data. A hacker later claimed to be selling up to 19 million records.
-
Researchers spot PowMix botnet targeting Czech workers
Researchers said the PowMix botnet has targeted workers in the Czech Republic since at least December 2025. The malware uses phishing-style ZIP files, in-memory execution and jittered command traffic to avoid detection.
-
Booking.com says hackers accessed reservation data, forces PIN resets
Booking.com said hackers accessed some reservation-related data and forced PIN resets for existing and past bookings. The company notified affected users by email and said it had contained the suspicious activity.
-
FBI, Indonesian Police Disrupt Global Phishing Network Using W3LL Toolkit
The FBI and Indonesian police dismantled infrastructure tied to a global phishing operation using the W3LL toolkit, seized domains and detained an alleged developer. Officials said the scheme targeted more than 17,000 victims in 2023 and 2024.
-
New VENOM phishing attacks target Microsoft logins of senior executives
A new phishing-as-a-service platform called VENOM has been targeting Microsoft credentials of senior executives since at least last November, using personalized lures, QR codes and methods that can capture session tokens.
-
Eurail says December breach exposed data of 300,000 people
Eurail said a December 2025 breach exposed personal data from more than 300,000 people, including passport details and contact information. Users were told to reset passwords, watch for phishing and monitor bank accounts.
-
Cisco Talos warns attackers are abusing GitHub and Jira notifications for phishing
Cisco Talos says attackers are abusing GitHub and Jira notification systems to send phishing emails that pass standard authentication checks and may look trusted to corporate users.
