Spear Phishing stories

Manufacturing was the most targeted sector for ransomware in 2025, as Check Point counted 1,466 attacks worldwide amid rising supply chain exposure.

ReliaQuest says suspected former Black Basta operators are bombarding staff with emails and posing as IT support in Microsoft Teams to reach senior executives.

Bitdefender adds integrated email defence to GravityZone, giving MSPs and businesses post-delivery protection against phishing, ransomware and BEC.

Proofpoint says mailbox rule abuse is becoming a routine Microsoft 365 takeover tactic, helping attackers hide alerts, hijack threads and drive fraud.

Trustifi rolls out AI-powered training videos for managed service providers, turning real phishing emails into branded simulations inside one dashboard.

VIPRE expands into student cyber safety with age-based lessons on phishing, AI impersonation and online abuse for schools and partners.

Booking.com tells some customers to watch for phishing after suspicious activity exposed reservation details, contact data and messages linked to bookings.

Doppel secures three ISO certifications for AI governance, security and privacy, as enterprise buyers demand stronger assurance against AI-driven cyber threats.

Microsoft warns that 10 to 15 EvilToken phishing runs are launched daily, compromising hundreds of organisations through OAuth token abuse.

Cyber breaches hit 43% of UK firms as phishing surges and basic safeguards like 2FA and VPNs see worryingly low uptake.

VIPRE links its Integrated Email Security with Microsoft Defender, unifying phishing and BEC detections in a single Defender console view.

AI agents are fuelling a new wave of cyber risk, as criminals weaponise automation to speed up ransomware and sharpen extortion tactics.

Iranian state-aligned hackers are shifting from spying to destructive cyber strikes, putting Western critical infrastructure on high alert.

AI-powered deepfakes and targeted malware ads are fuelling a new wave of scams, leaving UK small firms dangerously exposed online.

Norton launches Genie scam assistant in ChatGPT, letting users tag @Norton to analyse emails, texts, images and links for fraud risks.

A stealthy BlackSanta malware campaign is hijacking CVs and HR hiring flows to kill EDR tools at kernel level and exfiltrate data.

IRONSCALES' Winter 2026 Release debuts three AI agents, outbound encryption and Teams deepfake defences to counter next‑gen phishing.

Silent account takeover fraud is draining billions as criminals hijack real identities; here's how businesses can finally fight back.

Cloudflare warns AI-driven identity fraud and SaaS abuse are reshaping cybercrime, as global costs hit USD $10.5 trillion a year.

Codific warns power grids face repeat cyberattack patterns and urges utilities to bolster resilience to outages and cascading disruption.