social engineering

Generative AI energizes social technical attacks

by
Generative AI energizes social technical attacks

Phishing was no longer as common in 2024 as before, according to Crowdstrikes 2025 Global Threat Report. Threat players tend to access legitimate accounts through social engineering techniques such as Voice Phishing (Viseing), Callback Phishing and Helpdesk Social Technical Attacks. We are well in an era of what cybersecurity technology-crowdstrike called “the enterprising opponent”, with … Read more

Sneaky log phishing scheme targets two-factor security

by
Sneaky log phishing scheme targets two-factor security

Security researchers at French company Sekoia discovered a new phishing-as-a-service kit targeting Microsoft 365 accounts in December 2024, the company announced on January 16. The kit, called Sneaky 2FA, was distributed through Telegram by the threat actor service Sneaky Log. It is associated with about 100 domains and has been active since at least October … Read more