Phishing attacks have become a critical threat to enterprises worldwide, evolving faster than many legacy security systems can manage. One of the latest major wave of attacks targets WhatsApp users, leveraging sophisticated techniques to hijack sessions, steal sensitive data, and perpetrate scams. At StrongestLayer, we are meeting this Read More
Displaying posts from Category: Research
Threat Intelligence Brief: AI Generated E-Commerce Cyber Threat Targeting Enterprise Procurement
Summary The StrongestLayer Threat Intelligence team has uncovered a global, AI-driven e-commerce scam network that targets enterprise procurement departments and unsuspecting employees involved in purchasing. Operating under the guise of luxury fashion brands, these websites deliver high-value offers, leveraging AI to create a Read More
StrongestLayer Uncovers 3 Million AI-Generated Fake Brands in Global Phishing Operation
This investigation began innocently enough, with StrongestLayer’s analysts discovering a seemingly harmless domain during routine zero-day phishing threat-hunting. The domain, associated with a fake brand called Swift Nexus Bank (swiftnexusbank[.]com), showed no immediate signs of malicious activity. However, red flags began to Read More
India Times Hijacked: How a DNS Flaw Led to a Microsoft Phishing Scam – Are You Secure?
Why This Matters Phishing attacks are becoming more advanced and more complex to detect. Recently, StrongestLayer Threat Intelligence discovered a phishing page hosted on the India times website, redirecting users to a malicious Microsoft login replica. This incident highlights the need for employees to be vigilant and prepared for Read More
Hybrid-AI Phishing Group Exploits Luxury Car Dealerships, Job Portals, and Real Estate Agencies Worldwide
Why This Matters In today’s digital age, even legitimate websites are not safe from being compromised by cybercriminals. A hybrid-AI phishing group has targeted high-profile industries, setting up fake luxury car dealerships, job portals, and real estate agencies across the US, Europe, the Middle East, and Read More
How Malicious Actors Target US Employees and Evade Detection
Phishing attacks continue to evolve. Cybercriminals now use hidden identities and public cloud platforms to launch highly convincing phishing campaigns. To avoid being a victim of attacks that are embedded in the workflow, employees must be aware of these evolving threats. The StrongestLayer Investigation Recently, the StrongestLayer Threat intelligence team Read More
How Microsoft Phishing Campaigns Bypass Security Awareness: A Deep Dive into Advanced Threats
Traditional security awareness training often teaches users to analyze URLs and language and design inconsistencies in phishing sites. Attackers know this approach and continually evolve their tactics to bypass these defenses. The StrongestLayer Threat Intelligence Team has observed one such shift in real time. A Read More