MITRE ATT&CK Mapping

Help Net Security Phishing Apple Mar 31

Apple counters ClickFix attacks with macOS Terminal warning

Apple has added a new security feature in macOS Tahoe 26.4 that warns users before they enter commands in Terminal that could cause harm.

T1566 T1204

Help Net Security →

GBHackers Phishing Microsoft Mar 31

EvilTokens Launches New Phishing Service Targeting Microsoft Accounts

EvilTokens is a new Phishing-as-a-Service (PhaaS) platform that industrialises Microsoft account takeover by abusing the OAuth device code flow rather than t...

T1566 T1598

GBHackers →

GBHackers Phishing Mar 31

Tax Filing Scams Used to Deliver Malware in New Cybercrime Campaigns

Cybercriminals are once again exploiting global tax seasons, abusing IRS and tax filing lures to deliver malware, remote monitoring and management (RMM) tool...

T1566 T1598

GBHackers →

The Record Campaigns Mar 30

Pro-Russian hackers pose as Ukraine's cyber agency to target government, businesses

A pro-Russian hacker group impersonated Ukraine’s national cyber incident response team in a phishing campaign targeting government agencies, businesses, and...

T1566

The Record →

Infosecurity Magazine Vulnerability Disclosure Mar 30

Cybercriminals Exploit Tax Season With New Phishing Tactics

Tax-season phishing floods deliver RMM malware, credential theft, BEC and tax-form scams

T1566 T1078 T1598

Infosecurity Magazine →

GBHackers Data Breach Apple Mar 30

TA446 Uses DarkSword Exploit Kit to Target iPhone Users

TA446, a Russia-linked espionage group, has started using the DarkSword exploit kit to compromise iOS devices in a new phishing wave that abuses Atlantic Cou...

T1566 T1588

GBHackers →

The Hacker News Phishing Microsoft Mar 30

Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels

Cybersecurity researchers have discovered a remote access toolkit of Russian-origin that's distributed via malicious Windows shortcut (LNK) files that are di...

T1566 T1598

The Hacker News →

Security Affairs Vulnerability Disclosure Apple Mar 30

Russia-linked APT TA446 uses DarkSword exploit to target iPhone users in phishing wave

Russia-linked TA446 is using the DarkSword iOS exploit kit in targeted phishing campaigns to compromise iPhone users. Russia-linked APT group TA446 (aka SEAB...

T1566 T1588

Security Affairs →

The Hacker News Data Breach Apple Proofpoint Mar 28

TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

Proofpoint has disclosed details of a targeted email campaign in which threat actors with ties to Russia are leveraging the recently disclosed DarkSword expl...

T1566 T1588

The Hacker News →

Infosecurity Magazine Campaigns Google Mar 27

New Wave of AiTM Phishing Targets TikTok for Business

Push Security has uncovered a new AiTM phishing campaign targeting TikTok for Business accounts using Google and TikTok themed login pages

T1566 T1557

Infosecurity Magazine →

HackRead Ransomware Mar 27

BianLian Ransomware Spreads via Fake Invoice SVG Images in New Attacks

Researchers at WatchGuard have identified a new phishing campaign targeting companies in Venezuela.

T1566

HackRead →

Security Affairs TTPs Google Mar 27

New AITM phishing wave hijacks TikTok Business accounts

A new AITM phishing campaign targets TikTok Business accounts to hijack them for malvertising, continuing tactics seen in earlier Google-themed scams. Push S...

T1566 T1557 T1189

Security Affairs →

The Hacker News Campaigns Cloudflare Mar 27

AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion

Threat actors are using adversary-in-the-middle (AitM) phishing pages to seize control of TikTok for Business accounts in a new campaign, according to a repo...

T1566 T1557 T1189

The Hacker News →

GBHackers Campaigns Mar 27

Silver Fox Cyberattack Targets Japanese Businesses with Tax-Themed Phishing Scams

A threat actor known as Silver Fox is targeting Japanese organizations with a new wave of spearphishing attacks timed to coincide with the country’s busy tax...

T1566

GBHackers →

BleepingComputer Data Breach Mar 27

Dutch Police discloses security breach after phishing attack

The Dutch National Police (Politie) says a security breach resulting from a successful phishing attack has had a limited impact and hasn't affected citizens'...

T1566

BleepingComputer →

GBHackers Phishing Mar 27

Phishing ZIP Files Used to Deploy PXA Stealer Targeting Financial Firms

A sharp rise in PXA Stealer campaigns targeting global financial institutions during the first quarter of 2026. The activity marks a notable shift in the inf...

T1566

GBHackers →

HackRead Campaigns Mar 26

Quish Splash QR Code Phishing Campaign Hits 1.6 Million Users

7AI research reveals a massive QR code phishing attack that evaded SPF, DKIM, and DMARC. Find out how 1.

T1566

HackRead →

SC Media Phishing Microsoft Mar 26

Microsoft credential phishing weaponizes Bubble AI app builder

Microsoft credential phishing weaponizes Bubble AI app builder AI-powered no-code app-building platform Bubble has been exploited to create illicit web apps ...

T1566 T1598

SC Media →

BleepingComputer Campaigns Mar 26

TikTok for Business accounts targeted in new phishing campaign

Threat actors are targeting TikTok for Business accounts in a phishing campaign that prevents security bots from analyzing malicious pages. [.

T1566

BleepingComputer →

The Hacker News Vulnerability Disclosure Mar 26

ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories

Some weeks in security feel loud. This one feels sneaky.

T1566

The Hacker News →