Social Engineering stories - Page 5

Identity-based attacks drove nearly 70% of incidents in Expel's 2026 threat report, exposing gaps between basic controls and real-world defence.

Women in cybersecurity demand real visibility and inclusion, warning that lack of female voices skews risk, products and leadership decisions.

Cybersecurity is missing vital human insight; drawing in women and non‑STEM talent could close both the threat and perspective gaps.

HP reports a surge in AI-powered “flat-pack” cyberattacks as criminals trade sophistication for speed, low cost and mass customisation.

Silent account takeover fraud is draining billions as criminals hijack real identities; here's how businesses can finally fight back.

Cloudflare warns AI-driven identity fraud and SaaS abuse are reshaping cybercrime, as global costs hit USD $10.5 trillion a year.

Proofpoint plugs Collaboration Protection into AWS Security Hub Extended Plan, folding email and collaboration threat defence into one AWS deal.

Yubico has chosen Singapore for a new global HQ, bolstering Asia Pacific operations as demand for phishing-resistant authentication grows.

CrowdStrike launches FalconID, a “zero-friction” biometric MFA tool that binds logins to trusted devices to counter AI-powered phishing.

Phishing gangs abuse .arpa DNS and IPv6 tunnels to hide brand-impersonation scams in core internet plumbing that most defences ignore.

Ransomware cases dipped 17% in January, but NCC warns the threat remains high as Qilin targets critical sectors and tactics evolve.

Credas urges a UK-wide push to teach homebuyers about safer digital ID, warning email and WhatsApp use leaves them open to fraud.

UK firms report surge in phishing linked to remote and hybrid work, with 29% hit by incidents and attacks peaking in late 2025 searches.

AI has become firms' top data security fear as identity and deepfake threats surge, exposing gaps in visibility, encryption and governance.

Global ransomware attacks fell 17% in January, but NCC warns evolving tactics, AI and messaging apps mean risk is not receding.

Proofpoint plugs its AI-powered email and collaboration security into AWS Security Hub Extended, promising simpler cloud procurement and defence.

A rapid surge in OpenClaw AI assistant use has left tens of thousands of exposed systems and a trail of hijacked tools and malicious add-ons.

ShinyHunters shifts to subdomain-brand phishing and vishing on mobiles, bypassing domain checks to hijack SSO logins and SaaS sessions.

Phishing gangs exploit obscure .arpa DNS space and IPv6 tunnels to sneak past reputation-based web filters and lure users to fake sites.

AI-driven hackers can now steal data in just 72 minutes, as faster, multi-surface attacks overwhelm complex, over-trusting enterprises.