Spear Phishing stories

Manufacturing was the most targeted sector for ransomware in 2025, as Check Point counted 1,466 attacks worldwide amid rising supply chain exposure.

ReliaQuest says suspected former Black Basta operators are bombarding staff with emails and posing as IT support in Microsoft Teams to reach senior executives.

SMBs already own the tools, but cyber breaches keep breaking through because patchwork security, weak access controls and over-trust still leave gaps.

Bitdefender adds integrated email defence to GravityZone, giving MSPs and businesses post-delivery protection against phishing, ransomware and BEC.

Proofpoint says mailbox rule abuse is becoming a routine Microsoft 365 takeover tactic, helping attackers hide alerts, hijack threads and drive fraud.

Trustifi rolls out AI-powered training videos for managed service providers, turning real phishing emails into branded simulations inside one dashboard.

VIPRE expands into student cyber safety with age-based lessons on phishing, AI impersonation and online abuse for schools and partners.

Booking.com tells some customers to watch for phishing after suspicious activity exposed reservation details, contact data and messages linked to bookings.

Doppel secures three ISO certifications for AI governance, security and privacy, as enterprise buyers demand stronger assurance against AI-driven cyber threats.

Trust Panda opens Auckland hub with local YubiKey stock for New Zealand buyers as phishing fears drive demand for stronger authentication.

Microsoft warns that 10 to 15 EvilToken phishing runs are launched daily, compromising hundreds of organisations through OAuth token abuse.

KnowBe4 names Dr Kawin Boonyapredee APJ CISO advisor to steer human risk and AI cyber threat strategy from a new base in Singapore.

VIPRE links its Integrated Email Security with Microsoft Defender, unifying phishing and BEC detections in a single Defender console view.

AI agents are fuelling a new wave of cyber risk, as criminals weaponise automation to speed up ransomware and sharpen extortion tactics.

Norton launches Genie scam assistant in ChatGPT, letting users tag @Norton to analyse emails, texts, images and links for fraud risks.

IRONSCALES' Winter 2026 Release debuts three AI agents, outbound encryption and Teams deepfake defences to counter next‑gen phishing.

Silent account takeover fraud is draining billions as criminals hijack real identities; here's how businesses can finally fight back.

Cloudflare warns AI-driven identity fraud and SaaS abuse are reshaping cybercrime, as global costs hit USD $10.5 trillion a year.

Codific warns power grids face repeat cyberattack patterns and urges utilities to bolster resilience to outages and cascading disruption.

Phishing gangs exploit obscure .arpa DNS space and IPv6 tunnels to sneak past reputation-based web filters and lure users to fake sites.