Neowin News Feed for: Phishing

WhatsApp slams Isreali firm, NSO Group, for trying to spy on its users

David Uzondu — Mon, 08 Jun 2026 21:58:01 +0000

WhatsApp says it stopped an attempted spying campaign linked to Israeli firm NSO Group that used spear phishing tactics against users. Read more...

Microsoft Teams is adding new safeguards to block brand impersonation calls

Paul Hill — Wed, 06 May 2026 08:02:01 +0000

Microsoft is bolstering Teams security with new AI-driven alerts that flag suspicious brand impersonators. Find out how these real-time warnings will help protect your organization. Read more...

[Ends Today] Fighting Phishing: Everything you can do to fight it (worth $28) free download

Sponsored — Tue, 17 Mar 2026 17:00:01 +0000

Learn all the policies, education, and technical strategies that are essential to a complete phishing defense strategy. Read more...

Google goes after massive phishing enterprise behind those spammy USPS messages

Aditya Tiwari — Wed, 12 Nov 2025 15:40:01 +0000

Google announced it is taking legal action against the operators of a global phishing scam enterprise. Read more...

Google launches new scam protection features for Android users

Aditya Tiwari — Wed, 15 Oct 2025 19:48:01 +0000

Google is rolling out new scam protection features for Google Messages and recovery options for people locked out of their accounts. Read more...

Google denies major Gmail security warning that says 2.5 billion users are in danger

Paul Hill — Tue, 02 Sep 2025 08:28:01 +0000

Google has played down reports that 2.5 billion Gmail users are at risk and need to update their passwords. It said Gmail remains very secure. Read more...

How Star Blizzard tried to hack the WhatsApp accounts of government and diplomatic staff

Paul Hill — Fri, 17 Jan 2025 08:32:02 +0000

Microsoft has outlined a phishing scam used by the Russian hacking group Star Blizzard to get into the WhatsApp accounts of US government and diplomatic staff. Read more...

Phishing attack uses fake donation websites to steal crypto from Trump voters

Martin Hodás — Wed, 31 Jul 2024 16:00:01 +0000

An ongoing phishing campaign targets Donald Trump supporters. It uses fake donation websites; however, the fact that it only accepts payments in crypto means its impact is limited. Read more...

GitHub abused to host malware and create download links seemingly affiliated with Microsoft

Martin Hodás — Mon, 22 Apr 2024 13:50:01 +0000

File upload logic in GitHub's comments allows hackers to host malware on the service and abuse trusted developers and companies, such as Microsoft, to create legitimate-looking URLs. Read more...

Did you forget the fortune you earned mining Bitcoin online? Maybe because you didn't

Martin Hodás — Fri, 05 Jan 2024 16:04:02 +0000

Online scammers try to trick people into thinking that during crypto hype they registered on an online Bitcoin mining platform, then frighten them with the loss of their fictional funds. Read more...

Scammers will actually pay you $2 for a single YouTube like, targeting your inner greediness

Martin Hodás — Tue, 19 Dec 2023 18:12:01 +0000

In a rather atypical YouTube scamming scheme you can actually get paid by cybercriminals. However, earning a few extra bucks can get you into trouble, as the cheats hope you come back for more. Read more...

Gmail is working to cut down on spam at the source from 2024

Paul Hill — Wed, 04 Oct 2023 08:54:01 +0000

Google has outlined several measures taking senders of bulk emails to help cut down on spam. The company will be implementing the changes by February 2024 and users should see a difference. Read more...

Security researcher: New zip and mov top-level domains from Google pose phishing risks

Paul Hill — Wed, 17 May 2023 17:12:01 +0000

Security experts have raised warnings about Google's new .zip and .mov top-level domains because they look like file extensions and could be used maliciously. They are already being used in the wild. Read more...

Microsoft warns accounting and tax return firms of a new phishing attack ahead of US Tax Day

John Callaham — Fri, 14 Apr 2023 13:32:01 +0000

A new security blog post from Microsoft says that accounting and tax return firms are the targets of a phishing campaign designed to deliver a remote access trojan to their computers. Read more...

YouTube is warning people not to fall for a new phishing scam using its email

John Callaham — Fri, 07 Apr 2023 15:06:02 +0000

Google's YouTube is sounding the alarm about a recent email phishing scam that uses YouTube email addresses and asks people to click on a link about "changes in YouTube rules and policies." Read more...

Linus Tech Tips' YouTube channels were hacked due to a session hijacking attack

Justin Luna — Fri, 24 Mar 2023 12:18:01 +0000

YouTuber Linus Sebastian confirmed in a new video that his channels were taken over by hackers due to a session hijacking attack. This attack bypasses passwords and MFA to infiltrate an account. Read more...

Look out! That "thirst trap" job offer on LinkedIn could really be a malware trap

John Callaham — Mon, 13 Mar 2023 15:12:01 +0000

A new report from the security firm Mandiant claims that a group based in North Korea is posting fake job listings on LinkedIn that eventually results in malware being downloaded to a user's PC. Read more...

Microsoft to protect users better from phishing attacks that exploit OneNote

Justin Luna — Sat, 11 Mar 2023 17:12:01 +0000

Microsoft is set to introduce enhanced security to its OneNote program. This comes after threat actors started exploiting the note-taking app for their phishing campaigns to steal sensitive data. Read more...

Cybercriminals distribute fake ChatGPT apps online to push malware

Justin Luna — Thu, 23 Feb 2023 04:06:01 +0000

Threat actors were recently seen advertising fake ChatGPT apps for Windows and Android. When downloaded, the apps will steal sensitive information or subscribe the victim to premium services. Read more...

Domain registrar Namecheap's email hacked to send DHL, Metamask phishing emails

Justin Luna — Mon, 13 Feb 2023 05:12:01 +0000

The email account of domain registrar Namecheap was recently hacked, which allowed criminals to distribute phishing emails. The company has since rectified the issue after stopping all emails. Read more...

Reddit suffers security breach after employee falls for phishing attack

Justin Luna — Fri, 10 Feb 2023 02:20:01 +0000

Reddit recently suffered a security breach that allowed cybercriminals to access some of its internal data and systems. The incident was a result of a successful phishing attack against the company. Read more...

Microsoft Weekly: Declining revenues, new Windows 11 issues, and Edge updates

Usama Jawad — Sat, 28 Jan 2023 21:58:01 +0000

Our latest edition of Microsoft Weekly unpacks news about Microsoft's declining revenues in consumer categories, some Windows 11 updates, bugs, and fixes, and a bunch of app enhancements. Read more...

Yahoo was the most phished brand of 4Q'22, according to research

Justin Luna — Tue, 24 Jan 2023 13:34:01 +0000

According to new research by cybersecurity firm Check Point, Yahoo was the most impersonated brand by cybercriminals who sent phishing emails. Others who made the list include Google and DHL. Read more...

5 Simple cybersecurity tips you can practice in 2023

Justin Luna — Tue, 03 Jan 2023 09:44:01 +0000

As we enter a new year, cybercriminals will develop more dangerous and sophisticated cyberthreats. Thankfully, there are many things you can do to mitigate the risk of falling victim to them. Read more...

Social network Friendster apparently back, but its website looks suspicious

Justin Luna — Mon, 28 Nov 2022 07:16:01 +0000

Friendster, a defunct social media platform popular in the 2000s, was recently seen online again. However, it is not exactly known if the website is legitimate due to a few red flags. Read more...

Dropbox announces security breach after employees fall victim to phishing attack

Justin Luna — Wed, 02 Nov 2022 09:06:02 +0000

Popular file hosting service Dropbox recently suffered a data breach that gave threat actors access to 130 of its code repositories. This was after Dropbox employees fell victim to a phishing scam. Read more...

Cybercriminals are already sending phishing emails about Twitter's verification revamp

Justin Luna — Tue, 01 Nov 2022 13:56:02 +0000

Not long after Twitter's new CEO Elon Musk announced his plans to revamp the platform's verification process, cybercriminals are already exploiting the situation by sending out phishing emails. Read more...

Beware: Typosquatting campaign delivers Windows, Android malware

Justin Luna — Mon, 24 Oct 2022 07:10:01 +0000

A typosquatting campaign that steals sensitive data and infects Android and Windows devices with malware has recently been discovered. Many of the fake domains look very similar to the real ones. Read more...

Heat from fingertips can be used to crack passwords: Study

Justin Luna — Wed, 12 Oct 2022 10:50:01 +0000

A study by cybersecurity experts in Scotland found that passwords can be cracked by analyzing the traces of heat left by a person's fingertips when they enter their password on a keyboard or phone. Read more...

Meta warns Facebook users about password-stealing Android and iOS malware apps

Justin Luna — Fri, 07 Oct 2022 14:06:01 +0000

Meta has warned one million Facebook users who may have had their accounts compromised through a fraudulent iOS or Android app. The apps required users to sign in in order for the app to "work." Read more...

Samsung Internet 19.0 beta brings Chrome bookmark syncing, Smart anti-tracking, and more

Fiza Ali — Tue, 23 Aug 2022 17:16:01 +0000

Samsung has launched Samsung Internet 19.0 beta that brings new features and enhancements to the previous ones. It is now available to download on the Google Play Store and Samsung Galaxy Store. Read more...

Signal phone numbers of 1,900 users exposed in Twilio phishing attack

Hemant Saxena — Tue, 16 Aug 2022 06:36:02 +0000

Signal has reported a recent phishing attack on its verification service provider, Twilio, which has exposed approximately 1,900 users registered to a Signal account. Twilio has shut down the attack. Read more...

Microsoft warns about SEABORGIUM phishing attack that befriends you first to rob you later

Sayan Sen — Mon, 15 Aug 2022 22:46:01 +0000

Microsoft has warned about a phishing campaign called "SEABORGIUM". The threat actors of SEABORGIUM first build up rapport with the targets before duping them to rob their data, like credentials. Read more...

Communications provider Twilio experiences data breach through phishing attack

Steve Bennett — Mon, 08 Aug 2022 19:22:01 +0000

Provider of communications and two-factor authentication services, Twilio, has been targeted by a phishing attack, exposing what they say is a "limited number" of customer accounts. Read more...

Cloudflare acquires anti-phishing firm Area 1 Security for $162 million

Paul Hill — Thu, 24 Feb 2022 01:26:01 +0000

Cloudflare has acquired Area 1 Security, an email anti-phishing firm, for $162 million. Cloudflare already made inroads into the email security domain and this purchase will boost those efforts. Read more...

Google Drive now displays warning banners to alert users of suspicious files

Fiza Ali — Fri, 21 Jan 2022 09:44:01 +0000

Google Drive can now display warning banners to alert users of potentially malicious files. The new resource is available to all Google Workspace, G Suite Basic, and Business users. Read more...

New Outlook bug lets phishing emails seem genuine

Karthik Mudaliar — Tue, 07 Sep 2021 16:14:01 +0000

A bug in Microsoft Outlook is tricking people into believing that phishing emails are from genuine contacts by using the Cyrillic alphabet which has letters similar to those in the Latin alphabet. Read more...

Microsoft introduces new phishing protections in Teams

Usama Jawad — Tue, 27 Jul 2021 08:28:01 +0000

The ability to configure Safe Links policies for Microsoft Teams is now available for organizations which use Microsoft Defender for Office 365. It is utilized to protect against phishing attacks. Read more...

Chrome now features better privacy and security without draining the battery

Usama Jawad — Tue, 20 Jul 2021 19:42:01 +0000

Google has announced a bunch of privacy- and security-focused improvements for Chrome 92. It has also stated that phishing detection is now 50 times faster and drains lower battery than before. Read more...

Microsoft encourages cloud adoption amid Nobelium cyberattacks

Usama Jawad — Mon, 31 May 2021 04:04:01 +0000

After another Nobelium cyberattack, Microsoft has emphasized the need to differentiate between "espionage as usual" acts and crippling attacks like SolarWinds. It has encouraged cloud adoption too. Read more...