How Clickfix and AI are helping hackers break into your systems - at an alarming rate

ZDNET's key takeaways Clickfix attacks surged 500% in early 2025.Cybercriminals now use AI in BEC scams.AI is making phishing ...

Social engineering gains ground as preferred method of initial access

Senior executives and high-net-worth individuals are increasingly at risk as hackers use deepfakes, voice cloning and other ...

Hackers are exploiting OAuth loophole for persistent access - and resetting your password won't save you

Cybercriminals have increasingly used cloud account takeover (ATO) tactics in recent years - as it allows them to hijack ...

AI fuels social engineering but isn’t yet revolutionizing hacking

“Although AI is often touted as a game‑changer for the social‑engineering landscape, in the context of phishing, most threat ...
HR Dive

Hackers target Workday in social engineering attack

Workday has confirmed that it fell victim to a wide-ranging social engineering campaign that allowed hackers to access information at one of its third-party vendors. The hackers work by impersonating ...

How North Korean hackers stole a record $2bn in crypto — and the year’s not over

Elliptic says 2025 thefts have already smashed records. Funds believed to help bankroll Pyongyang’s nuclear programme.

If a TikTok 'tech tip' tells you to paste code, it's a scam. Here's what's really happening

On October 17, Senior ISC Handler Xavier Mertens said in a post published on the SANS Institute's Internet Storm Center website that the wave of attacks on TikTok leverages ClickFix social engineering ...
Engadget

How a social engineering hack turned these Facebook pages into a dumping ground for spam

Hannah Shaw, better known as the “Kitten Lady,” teaches people how to care for neonatal cats, and has raised more than $1 million for animal shelters and rescues. Her Facebook page has gained over a ...
CoinTelegraph

CoinStats hack caused by ‘socially engineered’ employee, CEO suspects

The recent hack of 1,590 CoinStats crypto wallets was carried out by compromising a CoinStats employee. On June 22, the cryptocurrency portfolio manager CoinStats temporarily suspended its services ...
InfoWorld

Ex-hacker spills secrets of fighting social engineering

Keen to the importance of not simply clicking on any email I receive in my inbox, I recently received a message with a subject line I could not resist: “Kevin Mitnick Security Awareness Training.” For ...

Hackers compile personal data on 22,000 US officials using stolen Salesforce records

Media, which first reported on the doxing of officials from the Department of Homeland Security, Immigration and Customs Enforcement, the FBI, and the Department of ...
InfoWorld

Hacker Mitnick preaches social engineering awareness

SYDNEY — Properly trained staff, not technology, is the best protection against social engineering attacks on sensitive information, according to security consultant and celebrity hacker Kevin Mitnick ...