Dossier
phishing emails
Coverage of phishing emails in the Nexus archive.
- Robinhood account creation flaw abused to send phishing emails
Robinhood's account creation process was exploited by threat actors to inject phishing messages into legitimate emails, deceiving users into believing their accounts had suspicious activity. This security flaw allowed attackers to impersonate the platform and trick users into engaging with malicious links.
- n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails
Threat actors have been exploiting n8n, an AI workflow automation platform, since October 2025 to bypass security filters and deliver malware via phishing emails. These campaigns automate malicious email distribution, enabling device fingerprinting and payload delivery through trusted infrastructure.