Social Engineering stories - Page 5

HP reports a surge in AI-powered “flat-pack” cyberattacks as criminals trade sophistication for speed, low cost and mass customisation.

Silent account takeover fraud is draining billions as criminals hijack real identities; here's how businesses can finally fight back.

Cloudflare warns AI-driven identity fraud and SaaS abuse are reshaping cybercrime, as global costs hit USD $10.5 trillion a year.

Proofpoint plugs Collaboration Protection into AWS Security Hub Extended Plan, folding email and collaboration threat defence into one AWS deal.

Yubico has chosen Singapore for a new global HQ, bolstering Asia Pacific operations as demand for phishing-resistant authentication grows.

CrowdStrike launches FalconID, a “zero-friction” biometric MFA tool that binds logins to trusted devices to counter AI-powered phishing.

Phishing gangs abuse .arpa DNS and IPv6 tunnels to hide brand-impersonation scams in core internet plumbing that most defences ignore.

Ransomware cases dipped 17% in January, but NCC warns the threat remains high as Qilin targets critical sectors and tactics evolve.

Credas urges a UK-wide push to teach homebuyers about safer digital ID, warning email and WhatsApp use leaves them open to fraud.

AI has become firms' top data security fear as identity and deepfake threats surge, exposing gaps in visibility, encryption and governance.

UK firms report surge in phishing linked to remote and hybrid work, with 29% hit by incidents and attacks peaking in late 2025 searches.

Global ransomware attacks fell 17% in January, but NCC warns evolving tactics, AI and messaging apps mean risk is not receding.

Proofpoint plugs its AI-powered email and collaboration security into AWS Security Hub Extended, promising simpler cloud procurement and defence.

A rapid surge in OpenClaw AI assistant use has left tens of thousands of exposed systems and a trail of hijacked tools and malicious add-ons.

ShinyHunters shifts to subdomain-brand phishing and vishing on mobiles, bypassing domain checks to hijack SSO logins and SaaS sessions.

Phishing gangs exploit obscure .arpa DNS space and IPv6 tunnels to sneak past reputation-based web filters and lure users to fake sites.

AI-driven hackers can now steal data in just 72 minutes, as faster, multi-surface attacks overwhelm complex, over-trusting enterprises.

Fewer than half of UK small firms can spot cyber breaches, as identity fraud and supplier scams expose gaps in remote and hybrid working.

MetaCompliance adds Exposure Monitoring to tie confirmed breach data to automated staff training and human risk scoring for security teams.

AI has overtaken all other threats as the top global data security risk, with firms warning its rapid spread magnifies existing vulnerabilities.