From inbox clutter to costly compromise: Why email threats still matter
Email-based attacks aren’t relics of the past. They’re active, sophisticated, and increasingly lucrative for attackers.
Similar Posts
Today’s insider threat: Ardyss edition
Here’s today’s reminder of the insider threat. And also the external threat. Consider it a pre-holiday twofer. DataBreaches was contacted yesterday by “0mid16B,” the same individual who was responsible for previously hacking The1 Card, Thailand’s most popular loyalty program. In their latest contact, they claim to have successfully attacked Ardyss[.]com and ArdyssLife[.]com, telling DataBreaches, “In…
The Pennsylvania Attorney General’s Office Updates Ransomware Attack Incident
Bys sOn September 17, the Pennsylvania Attorney General’s Office posted the following update to a ransomware attack it initially disclosed on August 11. HARRISBURG — The Office of Attorney General is providing an update regarding the cyber incident last month that impacted our agency. As previously reported, the incident was the result of a malicious actor……
South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware
Bys sHigh-level government institutions in Sri Lanka, Bangladesh, and Pakistan have emerged as the target of a new campaign orchestrated by a threat actor known as SideWinder. “The attackers used spear phishing emails paired with geofenced payloads to ensure that only victims in specific countries received the malicious content,” Acronis researchers Santiago Pontiroli, Jozsef Gegeny, and…
AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion
Bys sThreat actors are using adversary-in-the-middle (AitM) phishing pages to seize control of TikTok for Business accounts in a new campaign, according to a report from Push Security. Business accounts associated with social media platforms are a lucrative target, as they can be weaponized by bad actors for malvertising and distributing malware. “TikTok has been historically…
Europol Arrests XSS Forum Admin in Kyiv After 12-Year Run Operating Cybercrime Marketplace
Bys sEuropol on Monday announced the arrest of the suspected administrator of XSS.is (formerly DaMaGeLaB), a notorious Russian-speaking cybercrime platform. The arrest, which took place in Kyiv, Ukraine, on July 222, 2025, was led by the French Police and Paris Prosecutor, in collaboration with Ukrainian authorities and Europol. The action is the result of an investigation…
Ph: Department of the Interior and Local Government to probe alleged data breach by hackers
Bys sGMA Integrated News reports: The Department of Interior and Local Government (DILG) said Sunday it is verifying claims that its internal systems were breached by hackers. In a statement, the agency said their systems remain stable but that they have activated containment and security protocols to secure data. “Our technical teams and government cybersecurity units……