FBI Warns of Scattered Spider's Expanding Attacks on Airlines Using Social Engineering

GIFTEDCROOK Malware Evolves: From Browser Stealer to Intelligence-Gathering Tool

Facebook’s New AI Tool Asks to Upload Your Photos for Story Ideas, Sparking Privacy Concerns

Over 1,000 SOHO Devices Hacked in China-linked LapDogs Cyber Espionage Campaign

PUBLOAD and Pubshell Malware Used in Mustang Panda's Tibet-Specific Attack

In what has been described as an "extremely sophisticated phishing attack," threat actors have leveraged an uncommon approach that allowed bogus emails to be sent via Google's infrastructure and redirect message recipients to fraudulent sites that harvest their credentials.
"The first thing to note is that this is a valid, signed email – it really was sent from no-reply@google.com," Nick Johnson

Headline

Phishers Exploit Google Sites and DKIM Replay to Send Signed Emails, Steal Credentials

The Hacker News: Latest News