Tag: credential harvesting

Attack reports, vulnerabilities, indicators and intrusion sets linked to credential harvesting.

Attack reports (65)

• Bluekit Phishing as a Service (PhaaS) · Published 17/06/2026 01:44 · Modified 17/06/2026 08:20
• How attackers are jailbreaking LLMs with CTF framing and how to catch … · Published 15/06/2026 21:33 · Modified 16/06/2026 11:48
• Public and Private Medical Community Targeted by Threat Actor Pursuing Artificial Intelligence, … · Published 15/06/2026 19:33 · Modified 16/06/2026 11:48
• World Cup 2026 Mobile Targeted Phishing: The Global Social Engineering Threat · Published 11/06/2026 23:09 · Modified 15/06/2026 19:16
• Travel Phishing and Cyber Attacks are Surging in 2026, Growing 122% over … · Published 15/06/2026 14:53 · Modified 15/06/2026 17:15
• PHISH ALERT: Press Play for Compromise — Voicemail Phishing Kit Bundles SSO … · Published 10/06/2026 10:57 · Modified 10/06/2026 11:00
• Exposing a Global Smishing Operation Across 19 Countries: Governments, Postal Services, and … · Published 27/05/2026 20:22 · Modified 28/05/2026 15:35
• macOS Stealer Spoofs Apple, Google, and Microsoft in a Single Attack Chain · Published 18/05/2026 19:52 · Modified 18/05/2026 18:26
• Gremlin Stealer's Evolved Tactics: Hiding in Plain Sight With Resource Files · Published 15/05/2026 17:23 · Modified 15/05/2026 19:14
• Vibe Hacking: Two AI-Augmented Campaigns Target Government and Financial Sectors in Latin … · Published 12/05/2026 10:51 · Modified 12/05/2026 09:29
• Abuse of Cloud-Native Infrastructure in Modern Phishing Campaigns · Published 08/05/2026 16:10 · Modified 11/05/2026 10:26
• Phoenix Rising: Exposing the PhaaS Kit Behind Global Mass Phishing Campaigns · Published 29/04/2026 12:31 · Modified 04/05/2026 10:59
• Kuse Web App Abused to Host Phishing Document · Published 29/04/2026 21:42 · Modified 30/04/2026 07:47
• Inside a Fake DHL Campaign Built to Steal Credentials · Published 28/04/2026 20:56 · Modified 29/04/2026 07:14
• Tall Tales: How Chinese Actors Use Impersonation and Stolen Narratives to Perpetuate … · Published 28/04/2026 09:09 · Modified 28/04/2026 14:36
• A Third Vultr Seoul Box: 60+ Kimsuky Domains, 18 Months of DDNS … · Published 28/04/2026 10:06 · Modified 28/04/2026 14:35
• The npm Threat Landscape: Attack Surface and Mitigations · Published 25/04/2026 00:01 · Modified 27/04/2026 14:58
• AMOS Stealer delivered via Cursor AI agent session · Published 25/04/2026 06:37 · Modified 27/04/2026 14:58
• Untangling a Linux Incident With an OpenAI Twist (Part 2) · Published 22/04/2026 22:57 · Modified 27/04/2026 14:35
• Phishing Attack via Adobe-Themed Lure Delivering ScreenConnect and Credential Harvesting Tools · Published 23/04/2026 08:27 · Modified 27/04/2026 14:31
• macOS ClickFix Campaign: AppleScript Stealers & New Terminal Protections · Published 21/04/2026 02:05 · Modified 21/04/2026 09:28
• Using KATA and KEDR to detect the AdaptixC2 agent · Published 17/04/2026 18:56 · Modified 20/04/2026 10:53
• Dissecting macOS intrusion from lure to compromise · Published 17/04/2026 08:37 · Modified 17/04/2026 10:47
• Live C2 Dump Recovering Every Stage of the Kill Chain: CHM Dropper, … · Published 13/04/2026 17:10 · Modified 13/04/2026 16:23
• Telnyx Python SDK Compromised to Deliver Credential-Stealing Malware · Published 28/03/2026 07:39 · Modified 30/03/2026 10:12