Skip to main content
COSMICBYTEZLABS
NewsSecurityHOWTOsToolsTraining
StudyProjectsNewsletterHire MeAbout
Subscribe

Press Enter to search or Esc to close

News
Security
HOWTOs
Tools
Training
Study
Projects
Newsletter
Hire Me
About
RSS Feed
Reading List
Subscribe

Stay in the Loop

Get the latest security alerts, tutorials, and tech insights delivered to your inbox.

Subscribe NowFree forever. No spam.
COSMICBYTEZLABS

Your trusted source for IT intelligence, cybersecurity insights, and hands-on technical guides.

1941+ Articles
150+ Guides

CONTENT

  • Latest News
  • Security Alerts
  • HOWTOs
  • Checklists
  • Projects
  • Exam Prep

RESOURCES

  • Search
  • Browse Tags
  • Newsletter Archive
  • Reading List
  • RSS Feed

COMPANY

  • About Us
  • Contact
  • Privacy Policy
  • Terms of Service

© 2026 CosmicBytez Labs. All rights reserved.

System Status: Operational
All tags
58 articles

#Phishing

All CosmicBytez Labs articles tagged #Phishing, across news, security advisories, how-to guides, and projects.

  • NewsJul 16, 2026

    Identity Attacks Overtake Exploits as Top Ransomware Cause

    Sophos 2026: 79% of ransomware attacks start with stolen identities. MFA was present in 97% of credential-based cases yet failed to stop every one of them.

  • NewsJul 14, 2026

    Turning the Tables on Email Scammers With 'ScamBuster'

    An open-source, AI-driven system called ScamBuster adopts victim personas to actively engage with phishing attackers — gathering intelligence on criminal operations while consuming the scammer's time and attention.

  • NewsJul 13, 2026

    Misconfigured Server Exposes Three Evilginx Phishing Ops Targeting M365

    An attacker's operational security mistake — leaving a Python HTTP server and .bash_history exposed on a public port — allowed researchers to uncover three simultaneous Evilginx phishing campaigns targeting Microsoft 365 credentials.

  • ProjectJul 8, 2026

    Gophish Phishing Simulation Lab: Security Awareness Testing in Docker

    Deploy a self-hosted phishing simulation platform using Gophish in Docker. Build real-world phishing campaigns, track user engagement, and run security...

  • NewsJul 5, 2026

    Crafty Phishing Campaigns Auto-Adapt to Victim's Device, OS

    Phishing kits now fingerprint victims via user-agent headers to deliver OS-specific payloads automatically — device code phishing attacks spiked 1,380% in...

  • NewsJul 5, 2026

    'Phantom Squatting': An Emerging AI-Driven Supply Chain Threat

    Palo Alto Networks Unit 42 queried AI models 685,000+ times and found they hallucinate 2.1 million plausible-but-fake domains — attackers are now...

  • NewsJul 4, 2026

    ARToken PhaaS Exposes EvilTokens' Microsoft 365 Phishing Toolkit with AI-Powered BEC

    Cisco Talos has uncovered ARToken, a Phishing-as-a-Service platform affiliated with EvilTokens that weaponizes Microsoft's OAuth device code flow to...

  • NewsJul 3, 2026

    New Avalon Malware Framework Packs CrownX Ransomware Capabilities

    Blackpoint Cyber researchers have uncovered Avalon, an AI-assisted modular malware framework that chains phishing, credential theft, lateral movement, and...

  • NewsJun 29, 2026

    236,000 DCloud Uni-App Sites Powering Crypto Scams and Wallet Drainers

    Infoblox researchers have uncovered over 236,000 websites built on the legitimate DCloud Uni-App framework being weaponized for investment scams,...

  • NewsJun 29, 2026

    Gamaredon Expands Ukraine Attacks with New Malware and Cloud Abuse

    Russian FSB-linked APT group Gamaredon has mounted 35 distinct spear-phishing campaigns against Ukrainian targets in 2025, deploying an expanded malware...

  • NewsJun 29, 2026

    U.S. Offers $10 Million for Russian Hackers Targeting WhatsApp and Signal Users

    The U.S. Department of State is offering up to $10 million through its Rewards for Justice program for information identifying members of UNC5792 and...

  • NewsJun 28, 2026

    FBI: Russian Hackers Now Target Signal Backup Recovery Keys

    The FBI and CISA warn that a Russian-linked phishing campaign targeting Signal users has evolved to steal Backup Recovery Keys, giving attackers full...

  • NewsJun 28, 2026

    Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials

    Ukraine's SSU and the FBI have exposed a sustained Russian intelligence campaign using fake support SMS messages to steal Signal, WhatsApp, and Telegram...

  • NewsJun 27, 2026

    Ukraine and FBI Expose Russian Intelligence Campaign Stealing Signal Credentials via Fake SMS

    The SSU and FBI jointly disclosed a sustained Russian intelligence operation targeting messaging credentials of government officials, military personnel,...

  • NewsJun 26, 2026

    Russia Used Social Engineering to Breach Prominent Messaging Accounts, Ukraine Says

    Ukraine's SBU and the FBI have jointly exposed a long-running Russian intelligence operation using fake tech-support workers to steal messaging app...

  • NewsJun 22, 2026

    INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-Pacific

    A new INTERPOL report reveals a dramatic surge in Asia-Pacific cybercrime, with phishing rates nearly double the global average, ransomware attacks...

  • NewsJun 22, 2026

    WhatsApp Phishing Attack Uses Fake Business Docs to Hack PCs

    An active malware campaign is targeting WhatsApp users across multiple countries with deceptive messages pushing VBScript-based droppers disguised as...

  • NewsletterJun 17, 2026

    June 17 Digest: Teams C2 Evasion, Copilot Data Theft, iRhythm Breach, cPanel KEV

    DragonForce hides C2 inside Microsoft Teams relay traffic; a SearchLeak attack weaponizes M365 Copilot for one-click data exfiltration; iRhythm confirms...

  • NewsJun 16, 2026

    Fake Microsoft Security Alerts Used to Deploy North Korean NarwhalRAT Malware

    North Korean state-sponsored group APT37 (ScarCruft) is conducting spear-phishing campaigns impersonating Microsoft Account security notifications to...

  • NewsJun 15, 2026

    FBI and Google Dismantle 'Outsider Enterprise' Phishing Service

    A joint FBI and Google operation took down the Outsider Enterprise phishing platform — responsible for over 9,000 fake sites, nearly 4 million stolen...

  • NewsJun 15, 2026

    FBI and Google Dismantle 'Outsider Enterprise' Phishing-as-a-Service Platform

    A joint FBI and Google operation has dismantled the 'Outsider Enterprise' phishing-as-a-service platform responsible for over 9,000 phishing sites, nearly...

  • NewsJun 15, 2026

    Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts

    Cybersecurity researchers have uncovered a large-scale phishing campaign by the Sniper Dz threat group targeting Middle East and North Africa users...

  • NewsJun 14, 2026

    FBI Dismantles Massive AI-Powered Chinese Phishing-as-a-Service Operation

    The FBI, Google, and Black Lotus Labs jointly dismantled Outsider Enterprise, a massive Chinese phishing-as-a-service platform that operated over one...

  • NewsJun 11, 2026

    ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

    This week's threat intelligence roundup covers a supply chain attack kit posted publicly, a $5,000-per-month RAT that clones browser sessions, AI agents...

  • NewsJun 7, 2026

    What the 2026 DBIR Confirms: Attacks Are Living in the Browser

    The 2026 Verizon DBIR confirms phishing, shadow AI, malicious extensions, and credential theft now execute inside the browser, exposing major security gaps.

  • NewsMay 29, 2026

    In Other News: Trump Mobile Data Breach, FIFA World Cup Phishing, CISA Responds to Supply Chain Attacks

    Noteworthy cybersecurity stories from the week: Trump Mobile exposes customer data, phishers target 2026 FIFA World Cup fans, and CISA responds to recent...

  • NewsMay 28, 2026

    Chinese-Speaking Fraud Gang Targets 2026 World Cup Fans with 4,300 Fake FIFA Domains

    A Chinese-speaking cybercriminal group has registered over 4,300 fraudulent domains impersonating FIFA's official web presence since August 2025,...

  • NewsMay 24, 2026

    Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware

    The Belarus-aligned Ghostwriter APT (UAC-0057/UNC1151) has launched a new phishing campaign impersonating Prometheus, a Ukrainian e-learning platform, to...

  • NewsMay 22, 2026

    FBI Warns of Kali365 Phishing-as-a-Service Targeting

    The FBI has published an advisory on Kali365, a Telegram-based phishing-as-a-service platform that captures legitimate OAuth tokens to gain persistent...

  • NewsMay 17, 2026

    Tycoon2FA Hijacks Microsoft 365 Accounts via Device-Code

    The Tycoon2FA phishing-as-a-service platform has added device-code phishing to its arsenal and abuses Trustifi click-tracking URLs to bypass Microsoft 365...

  • NewsMay 14, 2026

    ''FrostyNeighbor'' APT Carefully Targets Govt Orgs in Poland, Ukraine

    A Belarusian nation-state threat group dubbed FrostyNeighbor is conducting a precise espionage campaign against government organizations in Poland and...

  • NewsMay 14, 2026

    KongTuke Hackers Now Use Microsoft Teams for Corporate

    Initial access broker KongTuke has pivoted to Microsoft Teams for social engineering attacks, gaining persistent access to corporate networks in as little...

  • NewsMay 3, 2026

    New Bluekit Phishing Kit Features AI Assistant and Automated Domain Registration

    A newly discovered phishing-as-a-service toolkit called Bluekit is emerging on underground forums, offering threat actors an AI assistant for campaign...

  • NewsMay 2, 2026

    ConsentFix v3 Automates Azure OAuth Abuse With Mass

    A new iteration of the ConsentFix attack toolkit has surfaced on cybercriminal forums, adding automation and scaling capabilities to OAuth consent...

  • NewsApr 27, 2026

    Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive

    Researchers at Infoblox and Confiant have uncovered a dual-threat fraud operation active since 2020: fake CAPTCHA pages secretly send up to 50...

  • NewsApr 25, 2026

    Microsoft to Roll Out Entra Passkeys on Windows in Late

    Microsoft is rolling out passkey support for phishing-resistant passwordless authentication to Microsoft Entra-protected resources from Windows devices...

  • NewsApr 21, 2026

    No Exploit Needed: How Attackers Walk Through the Front

    Stolen credentials remain the dominant initial access vector in 2026 — no zero-days, no malware, just valid logins that blend in with normal activity...

  • HOWTOApr 21, 2026

    Phishing Trends Hitting Western Canadian SMBs in 2026

    Five phishing patterns we're seeing specifically targeting small businesses across Alberta, Saskatchewan, and BC in 2026 — including invoice fraud…

  • NewsApr 19, 2026

    Apple Account Change Alerts Abused to Send Phishing Emails

    Threat actors are exploiting Apple's legitimate account change notification system to embed fake iPhone purchase scams inside genuine Apple emails,...

  • NewsApr 19, 2026

    Tycoon 2FA Loses Phishing Kit Crown Amid Surge in Attacks

    Following law enforcement disruption of the Tycoon 2FA platform, threat actors are reusing its tools and techniques across a wave of new phishing kits,...

  • NewsApr 17, 2026

    Ukraine Confirms APT28 Campaign Targeting Prosecutors and Anti-Corruption Agencies

    Ukraine's CERT-UA has confirmed a suspected APT28 espionage campaign targeting Ukrainian prosecutors and anti-corruption agencies, exploiting Roundcube...

  • NewsApr 9, 2026

    Cybercriminals Target Accountants to Drain Russian Firms'

    Cybercriminals are stealing millions from Russian companies by compromising accountants' computers and disguising fraudulent transfers as routine salary...

  • NewsApr 5, 2026

    Traffic Violation Scams Switch to QR Codes in New Phishing

    Scammers are sending fake "Notice of Default" traffic violation SMS messages impersonating state courts across the U.S., pressuring recipients to scan a...

  • NewsApr 4, 2026

    Device Code Phishing Attacks Surge 37x as New Kits Spread

    Device code phishing attacks abusing the OAuth 2.0 Device Authorization Grant flow have exploded 37-fold in 2026 as ready-made phishing kits proliferate...

  • NewsApr 1, 2026

    CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million Emails

    Ukraine's Computer Emergency Response Team (CERT-UA) has disclosed a large-scale phishing campaign in which threat actor UAC-0255 impersonated the agency...

  • NewsMar 28, 2026

    New Infinity Stealer Malware Grabs macOS Data via ClickFix

    A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka...

  • NewsMar 25, 2026

    Manager of Botnet Used in Ransomware Attacks Gets 2 Years

    Ilya Angelov, co-leader of the TA551/Mario Kart cybercrime group, was sentenced to two years in prison for operating a phishing botnet that sent 700,000...

  • NewsMar 22, 2026

    FBI Warns Russian Intelligence Targeting Signal and WhatsApp in Mass Phishing Campaign

    FBI and CISA alert warns Russian state actors have compromised thousands of messaging accounts belonging to US government officials, military personnel,...

  • NewsMar 15, 2026

    Operation Synergia III: Police Sinkhole 45,000 IPs in Global Cybercrime Crackdown

    An international law enforcement operation codenamed Operation Synergia III has sinkholed 45,000 IP addresses and seized servers linked to ransomware,...

  • NewsMar 4, 2026

    Europol-Coordinated Action Dismantles Tycoon2FA — 330

    An international coalition led by Europol and Microsoft has taken down Tycoon2FA, a phishing-as-a-service platform responsible for 87.5 million phishing...

  • NewsMar 2, 2026

    Operation Epic Fury Triggers Unprecedented Cyber Escalation

    Following the joint U.S.-Israeli military operation against Iran, Palo Alto Networks Unit 42 reports an unprecedented surge in cyber retaliation with...

  • NewsFeb 25, 2026

    Diesel Vortex: Russian Cybercrime Ring Steals 1,649

    A Russian-linked phishing operation dubbed Diesel Vortex has stolen over 1,649 credentials from major freight and logistics companies across the US and...

  • NewsFeb 13, 2026

    ClickFix Campaign Targets European Hotels with Fake

    A sophisticated phishing campaign dubbed PHALT#BLYX is targeting European hospitality organizations with fake Booking.com cancellation emails that display...

  • NewsFeb 11, 2026

    6.8 Billion Emails Exposed Online in Massive Data Leak

    A hacker revealed 6.8 billion email addresses online on February 11, 2026, in one of the largest email database leaks in history, raising concerns about...

  • SecurityFeb 10, 2026

    Windows SmartScreen Bypass Under Active Exploitation

    Actively exploited Windows Shell vulnerability bypasses SmartScreen protection, allowing malicious files to execute without security warnings. Patch...

  • SecurityFeb 10, 2026

    WinRAR Path Traversal Flaw CVE-2025-8088 Actively Exploited

    Critical path traversal vulnerability in WinRAR enables ransomware and credential theft as Russian and Chinese threat actors weaponize phishing campaigns...

  • NewsFeb 8, 2026

    FBI Warns of AI-Generated Deepfake Phishing Targeting

    The FBI and CISA issue joint advisory on sophisticated AI-generated deepfake voice and video attacks targeting C-suite executives in financial...

  • NewsJan 20, 2026

    AI-Powered Phishing Achieves 54% Click-Through Rate

    Microsoft reveals adversaries using AI for automated vulnerability discovery, phishing campaigns, and malware generation. AI-crafted phishing emails...