Phake phishing: Phundamental or pholly?
Debates over the effectiveness of phishing simulations are widespread. Sophos X-Ops looks at the arguments for and against – and our own phishing philosophy
Similar Posts
GlobalX, Airline for Trump’s Deportations, Hacked
Bys sJoseph Cox and Jaso Koebler report: Hackers have targeted GlobalX Air, one of the main airlines the Trump administration is using as part of its deportation efforts, and stolen what they say are flight records and passenger manifests of all of its flights, including those for deportation, 404 Media has learned. The data, which the…
70% of healthcare cyberattacks result in delayed patient care, report finds
Bys sChad Van Alstin reports: Last year, 92% of all healthcare organizations—systems, hospitals, and provider groups—were targeted by a cyberattack, according to a new report from vendor Fortified Health Security. Further, 70% of those that reported experiencing an incident said patient care was impacted in some form, signaling that even an unsuccessful data breach can result in…
China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions
Bys sA sophisticated China-nexus advanced persistent threat (APT) group has been attributed to attacks targeting government entities in South America since at least late 2024 and government agencies in southeastern Europe in 2025. The activity is being tracked by Cisco Talos under the moniker UAT-8302, with post-exploitation involving the deployment of custom-made malware families that have…
Hackers Found Using CrossC2 to Expand Cobalt Strike Beacon’s Reach to Linux and macOS
Bys sJapan’s CERT coordination center (JPCERT/CC) on Thursday revealed it observed incidents that involved the use of a command-and-control (C2) framework called CrossC2, which is designed to extend the functionality of Cobalt Strike to other platforms like Linux and Apple macOS for cross-platform system control. The agency said the activity was detected between September and December…
Under Pressure: Exploring the effect of legal and criminal threats on security researchers and journalists
Bys s“Dissent Doe,” DataBreaches.net admin@databreaches.net Zack Whittaker, this.weekinsecurity.com this@weekinsecurity.com February 2026. [Download .pdf version] Key takeaways Three-quarters of respondents in a pilot survey of journalists and security researchers reported receiving one or more threats due to their work; one-quarter reported never receiving any threats. Overall, half of the respondents reported receiving at least one legal threat…….
US Cyberattack Blacks Out Venezuela, Leads to Maduro’s Capture in 2026
Bys sJulian E. Barnes and Anatoly Kurmanaev report: The cyberattack that plunged Venezuela’s capital into darkness this month demonstrated the Pentagon’s ability not just to turn off the lights, but also to allow them to be turned back on, according to U.S. officials briefed on the operation. The Jan. 3 operation was one of the most……