Skip to main content
COSMICBYTEZLABS
NewsSecurityHOWTOsToolsTraining
StudyProjectsNewsletterHire MeAbout
Subscribe

Press Enter to search or Esc to close

News
Security
HOWTOs
Tools
Training
Study
Projects
Newsletter
Hire Me
About
RSS Feed
Reading List
Subscribe

Stay in the Loop

Get the latest security alerts, tutorials, and tech insights delivered to your inbox.

Subscribe NowFree forever. No spam.
COSMICBYTEZLABS

Your trusted source for IT intelligence, cybersecurity insights, and hands-on technical guides.

1941+ Articles
150+ Guides

CONTENT

  • Latest News
  • Security Alerts
  • HOWTOs
  • Checklists
  • Projects
  • Exam Prep

RESOURCES

  • Search
  • Browse Tags
  • Newsletter Archive
  • Reading List
  • RSS Feed

COMPANY

  • About Us
  • Contact
  • Privacy Policy
  • Terms of Service

© 2026 CosmicBytez Labs. All rights reserved.

System Status: Operational
All tags
43 articles

#Social Engineering

All CosmicBytez Labs articles tagged #Social Engineering, across news, security advisories, how-to guides, and projects.

  • NewsJul 16, 2026

    Two Scattered Spider Hackers Get 5.5 Years Each for £29 Million TfL Hack

    Owen Flowers, 18, and Thalha Jubair, 20, were each sentenced to five and a half years at Woolwich Crown Court for their roles in the 2024 cyberattack on Transport for London that downed 148 systems and disrupted 27,000 employees.

  • NewsJul 9, 2026

    INTERPOL Arrests 5,800 Suspects in Operation First Light 2026 Global Fraud Bust

    A 3.5-month INTERPOL-led operation spanning 97 countries resulted in 5,811 arrests, $293 million seized, and 142,000 victims identified — targeting...

  • ProjectJul 8, 2026

    Gophish Phishing Simulation Lab: Security Awareness Testing in Docker

    Deploy a self-hosted phishing simulation platform using Gophish in Docker. Build real-world phishing campaigns, track user engagement, and run security...

  • NewsJul 5, 2026

    Crafty Phishing Campaigns Auto-Adapt to Victim's Device, OS

    Phishing kits now fingerprint victims via user-agent headers to deliver OS-specific payloads automatically — device code phishing attacks spiked 1,380% in...

  • NewsJul 5, 2026

    Teen Suspect in Scattered Spider Hacks Is Extradited to US

    Peter Stokes, 19, has been extradited from Finland to face federal charges tied to Scattered Spider's hundred-million-dollar cybercrime spree — the latest...

  • NewsJul 2, 2026

    Ransomware Thugs Masquerade as Interpol to Entice Small Biz

    A ransomware campaign is impersonating Interpol to pressure small and medium-sized businesses into paying extortion demands, using law enforcement...

  • NewsJun 28, 2026

    Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials

    Ukraine's SSU and the FBI have exposed a sustained Russian intelligence campaign using fake support SMS messages to steal Signal, WhatsApp, and Telegram...

  • NewsJun 27, 2026

    Ukraine and FBI Expose Russian Intelligence Campaign Stealing Signal Credentials via Fake SMS

    The SSU and FBI jointly disclosed a sustained Russian intelligence operation targeting messaging credentials of government officials, military personnel,...

  • NewsJun 26, 2026

    Russia Used Social Engineering to Breach Prominent Messaging Accounts, Ukraine Says

    Ukraine's SBU and the FBI have jointly exposed a long-running Russian intelligence operation using fake tech-support workers to steal messaging app...

  • NewsJun 23, 2026

    WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool

    Attackers are abusing compromised WhatsApp accounts to distribute malicious VBScript files disguised as financial documents, ultimately deploying a...

  • NewsJun 22, 2026

    WhatsApp Phishing Attack Uses Fake Business Docs to Hack PCs

    An active malware campaign is targeting WhatsApp users across multiple countries with deceptive messages pushing VBScript-based droppers disguised as...

  • NewsJun 16, 2026

    FTC Warns of Record $3.5 Billion in Losses to Imposter Scams in 2025

    The U.S. Federal Trade Commission warned that Americans lost $3.5 billion to imposter scams in 2025 — nearly tripling since 2020 — as AI-powered voice...

  • NewsJun 15, 2026

    Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts

    Cybersecurity researchers have uncovered a large-scale phishing campaign by the Sniper Dz threat group targeting Middle East and North Africa users...

  • NewsJun 1, 2026

    Hackers Used Meta's AI Support Bot to Seize Instagram Accounts

    Iran-linked hackers exploited Meta's AI support assistant to reset account credentials, briefly defacing the Instagram accounts of the Obama White House and…

  • NewsMay 31, 2026

    ChatGPT Share Links Abused to Host Fake Outage Pages Delivering Malware

    Threat actors are exploiting ChatGPT's content-sharing feature to publish fake OpenAI outage pages that trick users into downloading trojanized ChatGPT…

  • NewsMay 27, 2026

    Ransomware Actors Show Up In Person to Steal Law Firm Data

    FBI warns the Silent Ransom Group is targeting law firms by physically arriving on-site and social-engineering access to sensitive client databases.

  • NewsMay 22, 2026

    Verizon DBIR 2026: Healthcare Fends Off Rising Social

    The 2026 Verizon Data Breach Investigations Report highlights how evolving social engineering tactics are making the healthcare sector more vulnerable,...

  • NewsMay 14, 2026

    KongTuke Hackers Now Use Microsoft Teams for Corporate

    Initial access broker KongTuke has pivoted to Microsoft Teams for social engineering attacks, gaining persistent access to corporate networks in as little...

  • NewsMay 13, 2026

    Weaponized AI: The New Frontier of Fraud and Identity

    Fake identity fraud powered by generative AI is projected to cause $40 billion in losses annually. Security leaders are warned that static defenses are no...

  • NewsApr 27, 2026

    Deepfake Voice Attacks Are Outpacing Defenses: What

    AI-powered voice cloning requires just three seconds of audio to convincingly impersonate executives and employees. Adaptive Security's new research...

  • NewsApr 27, 2026

    FTC: Americans Lost Over $2.1 Billion to Social Media Scams

    The U.S. Federal Trade Commission has released data showing staggering losses from social media fraud in 2025, representing a dramatic increase from...

  • NewsApr 25, 2026

    Threat Actor Uses Microsoft Teams to Deploy New 'Snow'

    UNC6692 employs email bombing and Teams impersonation to deliver a three-component Snow malware suite — SnowBelt, SnowGlaze, and SnowBasin — enabling full...

  • HOWTOApr 21, 2026

    Phishing Trends Hitting Western Canadian SMBs in 2026

    Five phishing patterns we're seeing specifically targeting small businesses across Alberta, Saskatchewan, and BC in 2026 — including invoice fraud…

  • NewsApr 19, 2026

    Apple Account Change Alerts Abused to Send Phishing Emails

    Threat actors are exploiting Apple's legitimate account change notification system to embed fake iPhone purchase scams inside genuine Apple emails,...

  • NewsApr 10, 2026

    'It Reads Like a Spy Novel': $280M Drift Theft Linked to North Korean Fake Companies

    A post-mortem of the $280 million Drift Protocol crypto theft reveals a sophisticated six-month North Korean social engineering operation involving fake...

  • NewsApr 9, 2026

    Cybercriminals Target Accountants to Drain Russian Firms'

    Cybercriminals are stealing millions from Russian companies by compromising accountants' computers and disguising fraudulent transfers as routine salary...

  • NewsApr 7, 2026

    Drift $280M Crypto Theft Linked to 6-Month In-Person DPRK

    Drift Protocol has revealed that the $280 million hack it suffered was the culmination of a six-month long operation in which North Korean-linked threat...

  • NewsApr 5, 2026

    $285 Million Drift Hack Traced to Six-Month DPRK Social

    Drift has confirmed the April 1, 2026, theft of $285 million resulted from a meticulously planned six-month North Korean social engineering operation that...

  • NewsApr 5, 2026

    Traffic Violation Scams Switch to QR Codes in New Phishing

    Scammers are sending fake "Notice of Default" traffic violation SMS messages impersonating state courts across the U.S., pressuring recipients to scan a...

  • NewsApr 4, 2026

    Axios npm Hack Used Fake Teams Error Fix to Hijack

    The Axios HTTP client post-mortem reveals North Korean threat actors used a ClickFix-style fake Microsoft Teams error message to socially engineer a...

  • NewsApr 4, 2026

    UNC1069 Social Engineering of Axios Maintainer Led to npm

    The North Korean threat actor UNC1069 used a sophisticated, targeted social engineering campaign against the Axios npm package maintainer Jason Saayman to...

  • HOWTOFeb 23, 2026

    How to Detect and Block ClickFix Attacks

    Learn how to detect and prevent ClickFix social engineering attacks using EDR rules, network monitoring, YARA signatures, and endpoint hardening. Covers...

  • NewsFeb 20, 2026

    Fintech Giant Figure Technology Confirms Breach: Nearly 1

    Blockchain-based lending platform Figure Technology Solutions confirms a data breach affecting nearly 1 million customers after ShinyHunters exploited an...

  • NewsFeb 19, 2026

    Hacker Accesses 1.2 Million French Bank Accounts via FICOBA Database

    The French Economy Ministry confirmed that a hacker stole credentials from a government official and accessed France's FICOBA centralized bank account...

  • NewsFeb 17, 2026

    Scattered Lapsus$ ShinyHunters Alliance Hits 100+

    The SLSH alliance combining Scattered Spider, Lapsus$, and ShinyHunters has attacked over 100 organizations since the start of 2026, breaching 60 million...

  • NewsFeb 15, 2026

    ClickFix Attacks Evolve to Abuse DNS nslookup for Payload Delivery

    Microsoft discloses a new ClickFix variant that uses DNS nslookup commands to retrieve and execute malicious PowerShell payloads, marking the first known...

  • NewsFeb 14, 2026

    Claude AI Artifacts Abused to Distribute macOS Infostealer

    Threat actors are abusing publicly shared Claude AI artifacts and Google Ads to deliver the MacSync infostealer to macOS users through ClickFix social...

  • NewsFeb 13, 2026

    Malicious Chrome Extension 'CL Suite' Steals Meta Business

    Security researchers have uncovered a malicious Chrome extension called CL Suite that steals TOTP 2FA seeds, Meta Business Manager data, and analytics,...

  • NewsFeb 13, 2026

    ClickFix Campaign Targets European Hotels with Fake

    A sophisticated phishing campaign dubbed PHALT#BLYX is targeting European hospitality organizations with fake Booking.com cancellation emails that display...

  • NewsFeb 11, 2026

    North Korea Deploys AI-Generated Video and ClickFix

    North Korean threat actors are running sophisticated campaigns using AI-generated deepfake videos and the ClickFix social engineering technique to target...

  • NewsFeb 8, 2026

    FBI Warns of AI-Generated Deepfake Phishing Targeting

    The FBI and CISA issue joint advisory on sophisticated AI-generated deepfake voice and video attacks targeting C-suite executives in financial...

  • NewsFeb 8, 2026

    North Korean Hackers Use Fake Zoom Meeting to Target Crypto

    UNC1069, a North Korean APT group, deployed a sophisticated ClickFix scam using a fake Zoom meeting to target a cryptocurrency executive in a social...

  • NewsJan 20, 2026

    AI-Powered Phishing Achieves 54% Click-Through Rate

    Microsoft reveals adversaries using AI for automated vulnerability discovery, phishing campaigns, and malware generation. AI-crafted phishing emails...