Social Engineering stories - Page 2

ChatGPT flaw may have let attackers siphon sensitive user data via DNS queries, prompting OpenAI to issue a fix after researchers exposed the bug.

Orange Business to weave Reality Defender's deepfake checks into enterprise communications for 7,000 customers amid rising fraud fears.

ReliaQuest flags DeepLoad malware stealing live credentials in enterprise networks, with AI-style obfuscation, USB spread and hidden WMI persistence.

Mimecast chief warns human risk is now cybersecurity's 'eighth layer' as malicious insiders overtake negligence in Australian attacks.

KnowBe4 expands its AIDA suite with AI defence agents to automate security training, phishing simulations and human risk measurement.

AI-fuelled cyber attacks are spreading faster worldwide, CrowdStrike warns, as breakout times plummet and criminals weaponise mainstream tools.

Cyber breaches hit 43% of UK firms as phishing surges and basic safeguards like 2FA and VPNs see worryingly low uptake.

Upwind unveils sub-millisecond prompt threat detection for LLMs, claiming 95% precision using Nvidia models to secure live AI workloads.

As AI-fuelled social engineering rises, firms are urged to adopt phishing-resistant MFA that supports, not undermines, human behaviour.

HPE Threat Labs warns cybercrime now runs like big business, as AI-fuelled, industrial-scale attacks hammer government and finance.

As logins replace break‑ins, experts urge a shift from perimeter defence to operational cyber resilience grounded in identity security.

A paranoid posture and heavy automation promise to transform SOCs, cutting dwell times and exposing stealthy attacks at unprecedented scale.

Cyware launches Agentic AI Fabric, adding goal-driven analyst agents to automate threat intel, detection engineering and incident response.

Rapid7 warns exploited high and critical software flaws more than doubled in 2025, as attackers compress disclosure-to-attack windows.

Abnormal AI launches Attune 1.0, a behavioural model that spots AI-crafted cyberattacks by learning normal workplace communication patterns.

Ransomware group LeakNet adopts ClickFix lures and a Deno-based fileless loader to scale attacks and evade traditional endpoint defences.

Okta and partners pull rogue ShieldGuard Chrome extension that stole crypto wallet data and bypassed browser defences via custom code.

Ditto launches cryptographic digital ID platform for EU, promising reusable wallet-based identities and less personal data exposure.

HPE warns cybercriminals now run attacks like global enterprises, using repeatable workflows, automation and AI to outpace defences.

VIPRE links its Integrated Email Security with Microsoft Defender, unifying phishing and BEC detections in a single Defender console view.