Social Engineering stories

Infoblox says counterfeit verification prompts are being used to trick users into sending premium texts, creating recurring SMS charges and telecom losses.

Keeper Security launches Verify Mode for enterprise browser extension, warning users before passwords are entered on suspicious sites to curb phishing logins.

KnowBe4 honours APJ partners in Singapore, with SSS Cybersecurity Specialists named regional winner as Australia, Thailand and Japan firms also recognised.

Barracuda links surge in device code phishing attacks to EvilTokens kit as criminals exploit Microsoft 365 logins and bypass multifactor checks.

CommBank deploys agentic AI to uncover emerging fraud and scam patterns, generating detection rules across 80 million daily payment signals.

VIPRE says cyber criminals are increasingly abusing trusted services like Cloudflare, Microsoft and TestFlight to dodge email security filters.

Everywhen warns businesses and consumers to check web addresses, padlocks and browser alerts as fake sites fuel rising cyber fraud risk.

Universities face a more varied cyber onslaught, with data breaches, hacktivism and ransomware surging as researchers draw nation-state attention.

Proofpoint warns that 36% of FIFA World Cup 2026 commercial partners still lack the strongest DMARC settings, leaving fans exposed to spoofed emails.

Arctic Wolf opens gated beta for Decipio, a tool aimed at flagging credential theft in corporate networks before attackers can move laterally.

KnowBe4 and Synthesia launch AI avatar videos for security training, letting firms create, revise and localise content faster across 130 languages.

Home Affairs urges Australians to tighten privacy settings as fresh data shows scammers can exploit public profiles, passwords and account recovery clues.

Anthropic is to give UK banks controlled access to its Mythos AI model, as financial firms brace for a new era of autonomous cyber threats.

Appdome unveils mobile API defence that checks app, device and session identity before granting access, targeting bot abuse and takeover attacks.

Ecommpay urges eCommerce overhaul as fraud report says current controls miss social engineering, distort competition and leave merchants exposed.

Rue Gilt Groupe brings Riskified identity scoring into Zendesk as retailers race to stop refund abuse without slowing customer service.

ReliaQuest says suspected former Black Basta operators are bombarding staff with emails and posing as IT support in Microsoft Teams to reach senior executives.

SMBs already own the tools, but cyber breaches keep breaking through because patchwork security, weak access controls and over-trust still leave gaps.

Trustifi rolls out AI-powered training videos for managed service providers, turning real phishing emails into branded simulations inside one dashboard.

VIPRE expands into student cyber safety with age-based lessons on phishing, AI impersonation and online abuse for schools and partners.