Skip to content
The Nexus
DossierENTITY

Phishing

Coverage of Phishing in the Nexus archive.

Earliest in view: Apr 24 · 14:00 UTCMost recent: Jul 3 · 15:08 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYJul 3 · 15:08 UTCR/SCAMS
    [US] National Processing Center Phishing?

    A caller claiming to be from the National Processing Center called the user and their mother, stating their names and county, and mentioned a 'servicer processer delivery' scheduled for Monday. The user questions if this is a phishing scam, as the number provided no results when searched.

  • SECURITYJul 2 · 01:19 UTCR/SCAMS
    What kind of job scam is this, and how would it work?

    A suspicious job offer involves a developer requesting help with client communication and project planning, offering high weekly compensation. The scammer claims to handle account setup on freelance platforms and development work, with the victim attending meetings and receiving 15% of project revenue. Concerns focus on phishing or more elaborate schemes.

  • SECURITYJul 1 · 07:20 UTCTHE HACKER NEWS
    Phantom Squatting Uses AI-Hallucinated Domains for Phishing and Malware

    Attackers are exploiting AI-generated fake domains by purchasing them and hosting phishing pages or malware, a tactic named 'phantom squatting' by Palo Alto Networks' Unit 42. The practice leverages domains hallucinated by large language models to direct traffic to malicious sites.

  • SECURITYJul 1 · 01:30 UTCR/SCAMS
    [Japan] Scammers targeting people with Japanese phone numbers on WhatsApp

    Scammers are targeting individuals with Japanese phone numbers via WhatsApp, sending phishing messages that mimic Facebook communications. The scammer's access to the victim's phone number suggests a potential data leak on WhatsApp, as they use business accounts to appear legitimate.

  • SECURITYJun 29 · 04:43 UTCR/SCAMS
    Am I being scammed on Vinted?

    An Australian user on Vinted received a suspicious purchase confirmation email from a buyer, directing them to a non-Vinted website (Vinted.rethreadco.com) to enter card details. The user is concerned as the transaction isn't reflected in the app, the purchaser's name doesn't match the email, and they question if this is a scam.

  • SECURITYJun 26 · 23:31 UTCR/SCAMS
    Need a second opinion on a weird Discord interaction (Odd Minecraft server request + domain flags)

    A user received a suspicious Discord friend request from the Wuthering Waves Official Discord, leading to a voice call with a person claiming to be German but speaking Turkish with unnatural vocal glitches. The individual requested feedback on a Minecraft server link with a newly registered domain (May 5, 2026) and defensively dismissed concerns about its legitimacy.

  • SECURITYJun 26 · 17:00 UTCR/SCAMS
    [US] Was messaged on Reddit and sent this screenshot and told to reach out to Legal on discord

    A Reddit user received a direct message alleging a phishing attack and was instructed to contact Reddit's legal department on Discord. The user shared a screenshot of an email with a Reddit letterhead and later questioned if the situation was a scam after following the instructions.

  • SECURITYJun 26 · 12:44 UTCMALWAREBYTES LABS
    Malware steals Chrome session cookies to take over your accounts

    A phishing email with a malicious JavaScript file disguised as a PDF installs a Chrome extension that steals session cookies and uses Chrome Native Messaging to execute PowerShell commands. The malware bypasses multi-factor authentication by hijacking active browser sessions and collects data like open tabs and system files.

  • SECURITYJun 25 · 22:02 UTCR/SCAMS
    Received close to 2000 emails so far from mail delivery subsy and postmaster

    A user's main Google account is being spammed with 4-5 phishing emails per minute, including auto-responses and references to 'rediffmailpro.com'. The user is seeking solutions to stop the spam and understand its purpose.

  • SECURITYJun 24 · 14:18 UTCMALWAREBYTES LABS
    Watch out for renewal scams pretending to be Malwarebytes

    Fake subscription renewal notices impersonating Malwarebytes and other companies are being used in phishing and tech support fraud scams. These emails often include fabricated details, high charges, and fake contact information to trick recipients into divulging personal or financial information.

  • SECURITYJun 24 · 00:02 UTCR/SCAMS
    DMV renewal scam, had my actual renewal attached

    A user received a phishing email appearing to be from their state's DMV, containing a malicious link and an attached renewal registration PDF with their personal and vehicle information. The registration was not due for three months, raising concerns about the public availability of such data.

  • SECURITYJun 23 · 20:15 UTCR/SCAMS
    Email about Payment and "Cloud" cancellation

    A user receives frequent phishing emails claiming their Cloud+ subscription payment failed, risking data deletion. They report marking emails as spam and blocking senders, but the messages persist with varying sender addresses.

  • SECURITYJun 22 · 06:06 UTCTHE HACKER NEWS
    INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-Pacific

    INTERPOL has reported a 'dramatic increase' in cybercrime across Asia and the South Pacific, driven by digitalization, internet expansion, new technologies, organized criminal networks, and uneven cybersecurity readiness. Phishing is highlighted as the most widespread threat in the region.

  • SECURITYJun 20 · 07:40 UTCR/SCAMS
    [AUSTRALIA] could the scam calls I got be related to entering my phone number into a website? (comparethemarket.com.au)

    A user in Australia received multiple scam calls after entering their phone number on Compare The Market, a website for comparing insurance and utility providers. They noticed discrepancies in search results, including a sponsored listing with a 'TM' symbol and a non-sponsored site with a blue icon. A follow-up email included a valid Australian Company Number registered to Compare The Market.

  • SECURITYJun 19 · 22:25 UTCR/SCAMS
    [AU] Scam on discord. What's the angle?

    A user on Discord was contacted by an individual claiming to have added the wrong person, leading to a conversation where they were encouraged to download a mobile Jurassic Park game. The user suspects the game link sent by the individual may be part of a scam, questioning whether it was phishing and why the Jurassic Park game was targeted.

  • CRIMEJun 18 · 02:00 UTCTHE REGISTER
    Cyber offenses now account for around a third of all crime across Asia and South Pacific

    Cybercrime accounts for over 30% of all offenses in the Asia and South Pacific region, driven by digital infrastructure growth and organized criminal networks. Phishing, AI-enhanced scams, and deepfake technologies are key tactics, with scam centers in countries like Cambodia and the Philippines generating billions annually.

  • SECURITYJun 10 · 14:05 UTCBLEEPING COMPUTER
    The 5 Best Practices for Secure Identity Verification

    The article discusses how attackers bypass weak authentication using phishing, MFA fatigue, and service desk social engineering. Specops Software outlines five best practices to enhance identity verification and access security.

  • SECURITYJun 9 · 14:34 UTCQUARTZ
    20 cybersecurity concepts every person should understand

    The article outlines 20 essential cybersecurity concepts, including phishing and zero-trust architecture, to help individuals protect their data and recognize online threats.

  • SECURITYJun 8 · 09:34 UTCWTOP DC
    Data Doctors: How to spot scam invitations

    The article warns about scam invitations during events like weddings, which mimic platforms like Evite and Paperless Post to steal login credentials. The FTC advises checking sender emails, links, and avoiding entering credentials on such invitations. Victims should change passwords and enable two-factor authentication if compromised.

  • SECURITYJun 5 · 14:00 UTCBLEEPING COMPUTER
    What 2026 DBIR Confirms: Attacks Are Living in the Browser

    The 2026 Verizon DBIR report highlights that phishing, shadow AI, malicious browser extensions, and credential theft are increasingly occurring within web browsers, underscoring significant security vulnerabilities at the browser layer.

  • SECURITYJun 1 · 10:00 UTCCYBERSCOOP
    Election threats are focused on campaign systems, not voting machines

    Cybersecurity threats to the 2026 midterm elections are targeting campaign systems such as email accounts, websites, and fundraising platforms rather than voting machines. Attackers are using AI to enhance phishing and password theft, with 82% of malicious attacks arriving via email and over 16,000 stolen passwords reported from ActBlue and WinRed. New election-related websites are being registered for phishing scams, and AI-generated misinformation is a growing concern.

  • SECURITYJun 1 · 10:00 UTCTHE HILL
    Hackers more focused on misleading voters than ballot tampering: Report

    Hackers and foreign influence operators are increasingly using misinformation campaigns to confuse voters rather than tampering with voting systems in the 2026 midterm elections, according to a Check Point Software report. The report highlights phishing, impersonation, and misinformation as primary tactics.

  • SECURITYMay 30 · 19:21 UTCWASHINGTON TIMES
    Unexpected party invite in your email could be phishing scam, FTC warns

    The Federal Trade Commission warned Americans about phishing emails that falsely claim to invite recipients to events. These scams aim to deceive individuals through unexpected party invitations sent via email.

  • SECURITYMay 29 · 13:18 UTCHACKER NEWS
    Someone used my open source project to phish people

    An open source project was used for phishing activities. The article is hosted at andrej.sh and has a Hacker News thread with 30 points and 5 comments.

  • SECURITYMay 29 · 13:00 UTCTHE REGISTER
    Dutch cops wrest 17M devices from mystery botnet's clutches

    Dutch police dismantled a botnet comprising at least 17 million infected devices, seizing servers in the Netherlands after a tip from the NCSC-NL. The botnet, used for phishing, DDoS attacks, and fraud, targeted poorly secured consumer devices like routers and IoT hardware. Authorities also highlighted rising threats from residential proxy networks used for malicious purposes.

  • SECURITYMay 26 · 19:57 UTCDECRYPT
    Grand Theft Data: Threat Actors Weaponizing GTA 6 Hype, NordVPN Warns

    Cybercriminals are exploiting the popularity of Grand Theft Auto 6 by distributing phishing traps and malware, according to a warning from NordVPN. The threat actors are using the game's hype to lure victims into malicious schemes.

  • SECURITYMay 22 · 16:30 UTCFOX NEWS
    Inheritance scam email looks real but steals your data

    A sophisticated inheritance scam email is circulating that impersonates legitimate financial notices to trick recipients into clicking malicious links and surrendering personal data. The scam uses emotional triggers like urgency and the promise of unclaimed funds to bypass critical thinking, while appearing professional with proper formatting and official-sounding language.

  • SECURITYMay 21 · 14:00 UTCBLEEPING COMPUTER
    Inside a Crypto Drainer: How to Spot it Before it Empties Your Wallet

    The article examines modern crypto drainers that deceive users into approving malicious transactions rather than directly hacking wallets. It specifically analyzes the Lucifer DaaS platform, which automates wallet theft through phishing techniques and scaled attacks. The piece aims to educate readers on identifying and avoiding these threats.

  • SECURITYMay 20 · 17:47 UTCDAILY MAIL
    Warning to all Gmail users over sinister invites that drain your bank accounts

    Gmail users are being warned about sinister invites that can drain their bank accounts. The invites appear to be legitimate but are actually phishing scams. Users are advised to be cautious when clicking on links or providing personal information.

  • SECURITYMay 20 · 16:09 UTCDAILY MAIL US
    Warning to all Gmail users over 'friend' invites stealing bank details: Do NOT click

    Gmail users are being warned about a phishing scam that steals bank details through 'friend' invites. The scam tricks users into clicking on malicious links, compromising their sensitive information. Users are advised to be cautious and not click on suspicious links.

  • SECURITYMay 18 · 13:00 UTCTHE HACKER NEWS
    How to Reduce Phishing Exposure Before It Turns into Business Disruption

    Phishing emails can pass through security and expose businesses to risk, early detection helps teams move from uncertainty to evidence faster. Phishing attacks leave teams unsure what was exposed and how far the risk has spread. Early phishing detection is crucial to reduce business disruption.

  • SECURITYMay 12 · 19:40 UTCBLEEPING COMPUTER
    Signal adds security warnings for social engineering, phishing attacks

    Signal has introduced new security measures to protect against phishing and social engineering attacks. These measures include in-app confirmations and warning messages. The goal is to prevent various forms of fraud.

  • SECURITYMay 1 · 18:09 UTCTHE HACKER NEWS
    30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign

    A Vietnamese-linked cyber operation, codenamed AccountDumpling by Guardio, used Google AppSheet as a phishing relay to steal approximately 30,000 Facebook accounts, which were then sold through an illicit storefront.

  • SECURITYApr 30 · 20:26 UTCTHE REGISTER
    Bot her emails: most modern phishing campaigns are AI-enabled

    KnowBe4 reports that 86% of phishing campaigns it tracked use AI, highlighting a significant shift in cyber threats. AI-enabled phishing is described as a landscape-changing development, starting with inboxes.

  • SECURITYApr 30 · 11:35 UTCTHE REGISTER
    Nearly half of UK businesses pwned last year as phishing keeps doing the job like it's 2005

    Nearly half of UK businesses were breached last year due to phishing attacks, with employees often falling for fake login pages disguised as IT support emails. The article highlights human error, not AI, as the primary vulnerability.

  • SECURITYApr 29 · 15:35 UTCTHE REGISTER
    CISA flags data-theft bug in NSA-built OT networking tool

    CISA has issued a warning about a data-theft vulnerability in GrassMarlin, an operational technology (OT) networking tool developed by the National Security Agency (NSA). The flaw allows attackers to exploit sensitive information if they possess advanced phishing skills.

  • SECURITYApr 28 · 18:07 UTCR/CRYPTOMARKETS
    $17 billion stolen from crypto in 10 years — and the biggest threat might surprise you

    Cumulative crypto losses have exceeded $17 billion across 518 incidents since 2016, with private key compromises causing $3.6 billion in thefts. 2025 was the worst year with $4.04 billion stolen, and the 2026 Kelp DAO rsETH bridge hack ($290-292M) highlights escalating risks as DeFi grows.

  • SECURITYApr 28 · 17:48 UTCR/CRYPTOCURRENCY
    Polymarket breach claim: 300,000+ user data allegedly exposed, claimed by "xorcat

    A threat actor named xorcat claimed on a dark Web forum that Polymarket experienced a data breach affecting over 300,000 users. The claims remain unverified, but if true, they highlight vulnerabilities in crypto platforms' data security, authentication processes, and third-party integrations.

  • SECURITYApr 27 · 20:06 UTCR/CRYPTOCURRENCY
    Just Got hacked and lost my crypto currency, can I do anything about it?

    A user's Gmail account was hacked, leading to a phishing scam involving Gemini and Ledger Wallet. The scammer convinced the user to transfer cryptocurrency to a SafePal 'vault,' resulting in the loss of all funds and email records.

  • SECURITYApr 24 · 14:00 UTCTHE GUARDIAN TECH
    What is a passkey, how does it work and why is it better than a password?

    The UK’s National Cyber Security Centre (NCSC) has announced it will no longer recommend passwords where passkeys are available, citing stronger security and resistance to phishing and breaches. Passkeys, stored on users’ devices, are positioned as a more secure alternative for logging into apps and websites.