Social Engineering stories

A stealthy BlackSanta malware spree is hijacking HR recruitment workflows, killing endpoint defence tools and exfiltrating sensitive data.

iProov launches a biometric Workforce Solution Suite to verify real human presence and shield employers from deepfake-driven identity fraud.

Bitdefender exposes 26,000 Meta ads in 25 countries pushing fake investment schemes, impersonating banks, media and public figures.

Leaked Sama staff logins tied to stealer malware spark fresh alarm over security of Meta Ray-Ban smart glasses video review pipeline.

Dell draws scrutiny after a promo email mimics a payment remittance notice, blurring lines between marketing, transactions and phishing risks.

Rising UK cyber attacks show training alone is failing; firms must embed behavioural security cues into daily work to cut human risk.

New Coruna exploit kit shows outdated iOS devices face automated, scalable attacks that can turn compromised phones into corporate gateways.

Global ransomware attacks jump 50% to 7,874 in 2025, with industrial firms bearing the brunt as criminal groups reshuffle their tactics.

Scammers hijack Israel-Iran war headlines for classic advance-fee email cons, security researchers warn, urging users not to respond.

Bybit says its 2025 Dynamic Risk-Based Protection System stopped scams from draining over USD $300m in suspicious crypto withdrawals.

IRONSCALES' Winter 2026 Release debuts three AI agents, outbound encryption and Teams deepfake defences to counter next‑gen phishing.

1Kosmos adds embedded identity checks to ServiceNow AI workflows to curb social engineering in high-risk service desk interactions.

Cyber criminals are hijacking MSP trust relationships, abusing valid credentials and VPNs as AI turbocharges phishing and ransomware.

Attackers' AI use is surging faster than staff skills, Fortinet warns, leaving firms exposed despite rising security awareness spending.

Identity-based attacks drove nearly 70% of incidents in Expel's 2026 threat report, exposing gaps between basic controls and real-world defence.

Women in cybersecurity demand real visibility and inclusion, warning that lack of female voices skews risk, products and leadership decisions.

Malicious insider threats now outpace negligence in Australia, as Mimecast warns rising AI-fuelled attacks are testing outdated security models.

Cybersecurity is missing vital human insight; drawing in women and non‑STEM talent could close both the threat and perspective gaps.

HP reports a surge in AI-powered “flat-pack” cyberattacks as criminals trade sophistication for speed, low cost and mass customisation.

Silent account takeover fraud is draining billions as criminals hijack real identities; here's how businesses can finally fight back.