Hackers Exploit Free Firebase Accounts to Launch Phishing Campaigns

A new wave of phishing campaigns where scammers are abusing Google’s legitimate infrastructure to bypass security filters. Attackers are now creating free developer accounts on Google Firebase to send fraudulent emails that impersonate well-known brand…

·

Cyber Security News, Phishing, vulnerability

¶¶¶¶¶

Phishing and OAuth Token Vulnerabilities Lead to Full Microsoft 365 Breach

Two medium-severity vulnerabilities, an unsecured email API endpoint and verbose error messages exposing OAuth tokens, chain together to enable authenticated phishing that bypasses all email security controls, persistent access to Microsoft 365 environ…

·

cyber security, Cyber Security News, Phishing, Vulnerabilities

¶¶¶¶¶

Sanctioned Bulletproof Host Linked to Hijacking of Old Home Routers

Compromised home routers in 30+ countries had DNS traffic redirected, sending users to malicious sites while normal browsing appeared unaffected.

·

Aeza International, Bulletproof, Cyber Attack, Cyber Crime, Cyber-Attacks, cybersecurity, DNS, Home Routers, IoT, Malware, Phishing, Routers, Russia, Security

¶¶¶¶¶

Phishing Campaigns Abuse Trusted Cloud Platforms, Raising New Risks for Enterprises

ANY.RUN experts report a surge in phishing campaigns abusing trusted cloud and CDN platforms to bypass security controls and target enterprise users.

·

ANY.RUN, Cloud Security, Cloudflare, cybersecurity, Fraud, Google, Microsoft, Phishing, Phishing Scam, SCAM, Security

¶¶¶¶¶

Fake Dropbox Phishing Campaign Targets Users, Steals Login Credentials

A sophisticated phishing campaign that uses a multi-stage approach to bypass email filtering and content-scanning systems. The attack exploits trusted platforms, benign file formats, and layered redirection techniques to harvest user credentials from u…

·

cyber security, Cyber Security News, Phishing

¶¶¶¶¶

Phishing Scam Uses Clean Emails and PDFs to Steal Dropbox Logins

A multi-stage phishing campaign is targeting business users by exploiting Vercel cloud storage, PDF attachments, and Telegram bots to steal Dropbox credentials.

·

Cyber Attack, cybersecurity, Dropbox, Fraud, Password, PDF, Phishing, Phishing Scam, Privacy, SCAM, Security

¶¶¶¶¶

New Deepfake Phishing Attack Targets Bitcoin Users via Zoom and Teams

A sophisticated deepfake-enabled phishing campaign is actively targeting Bitcoin users through fake Zoom and Microsoft Teams calls. The attackers are exploiting video conferencing, Telegram, and AI-generated identities to steal bitcoin and compromise v…

·

cyber security, Cyber Security News, Phishing, Zoom

¶¶¶¶¶

New Phishing Attack Exploits Vercel to Host and Deliver Remote Access Malware

A new phishing campaign abusing the Vercel hosting platform has been active since at least November 2025 and is becoming increasingly sophisticated. The core trick is “inherited trust.” Attackers send short phishing emails with financial or business th…

·

cyber security, Cyber Security News, Malware, Phishing

¶¶¶¶¶

Hackers Are Using LinkedIn DMs and PDF Tools to Deploy Trojans

That LinkedIn message pretending to be job offer could just be malwre.

·

Cyber Attack, cybersecurity, DLL, Malware, PDF, Phishing, Python, RAT, ReliaQuest, SCAM, Security, TROJAN, vulnerability, WinRAR

¶¶¶¶¶

PNB MetLife Phishing Attack: Multi-Stage Scheme Steals Data, Triggers UPI Payments

A sophisticated multi-stage phishing campaign is actively targeting PNB MetLife Insurance customers through fake payment gateway pages. The attack chain extracts customer details, forces fraudulent UPI payments, and escalates to full banking credential…

·

cyber security, Cyber Security News, Phishing

¶¶¶¶¶

1010.cx

1010.cx

Category: Phishing