X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - ITSECURITYNEWS.INFO - A La Une - 16/Jan 10:11

Sneaky 2FA: exposing a new AiTM Phishing-as-a-Service

Introduction In December 2024, during our daily threat hunting routine, we uncovered a new Adversary-in-the-Middle (AiTM) phishing kit targeting Microsoft 365 accounts. These phishing pages have been circulating since at least October 2024, and during that period, we identified potential…

Articles similaires

Sorry! Image not available at this time

New Tykit Phishing Kit Mimics Microsoft 365 Login Pages to Steal Corporate Account Credentials

itsecuritynews.info - 22/Oct 16:04

A sophisticated phishing kit dubbed Tykit, which impersonates Microsoft 365 login pages to harvest corporate credentials. First detected in May 2025,...

Sorry! Image not available at this time

New Phishing Attack Leverages Azure Blob Storage to Impersonate Microsoft

itsecuritynews.info - 18/Oct 15:02

Threat actors are leveraging Microsoft Azure Blob Storage to craft highly convincing phishing sites that mimic legitimate Office 365 login portals,...

Sorry! Image not available at this time

New Phishing Attack Leverages Azure Blob Storage to Impersonate Microsoft

itsecuritynews.info - 18/Oct 15:02

Threat actors are leveraging Microsoft Azure Blob Storage to craft highly convincing phishing sites that mimic legitimate Office 365 login portals,...

Sorry! Image not available at this time

175 Malicious npm Packages Targeting Tech and Energy Firms, 26,000 Downloads

itsecuritynews.info - 10/Oct 12:02

Socket’s Threat Research Team has uncovered a sprawling phishing campaign—dubbed “Beamglea”—leveraging 175 malicious npm packages that have...

Sorry! Image not available at this time

New Phishing Wave Uses OAuth Prompts to Take Over Microsoft Accounts

itsecuritynews.info - 05:34

A new phishing campaign is targeting Microsoft account holders by using a clever twist on OAuth authentication prompts. Instead of asking users to...

Sorry! Image not available at this time

New Malware Toolkit from MuddyWater Delivers Phoenix Backdoor to Global Targets

itsecuritynews.info - 23/Oct 07:04

Group-IB Threat Intelligence has uncovered a sophisticated phishing campaign orchestrated by the Iran-linked Advanced Persistent Threat group...

Sorry! Image not available at this time

MuddyWater Using New Malware Toolkit to Deliver Phoenix Backdoor Malware to International Organizations

itsecuritynews.info - 15:35

The Advanced Persistent Threat group MuddyWater, widely recognized as an Iran-linked espionage actor, has orchestrated a sophisticated phishing...

Sorry! Image not available at this time

PhantomCaptcha Campaign Targets Ukraine Relief Organizations

itsecuritynews.info - 22/Oct 16:04

SentinelLABS Researchers have uncovered a new phishing campaign, PhantomCaptcha, targeting aid organizations supporting Ukraine This article has been...

Sorry! Image not available at this time

PhantomCaptcha targets Ukraine relief groups with WebSocket RAT in October 2025

securityaffairs.co - 22/Oct 20:01

PhantomCaptcha phishing campaign hit Ukraine relief groups with a WebSocket RAT on Oct 8, 2025, targeting Red Cross, UNICEF, and others. SentinelOne...

Sorry! Image not available at this time

Fake Google Job Offer Email Scam Targets Workspace and Microsoft 365 Users

itsecuritynews.info - 15/Oct 12:02

Cybersecurity firm Sublime Security details a new credential phishing scam impersonating Google Careers to steal login details from Google Workspace...

Les derniers communiqués