Sendmarc appoints Rob Bowker as North American Region Lead
Veteran email security leader to expand MSP and VAR partnerships and accelerate DMARC adoption.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Is That Gmail Security Alert Real? How to Spot a Phishing Scam
In a world where our lives are increasingly managed through email, an unexpected security alert can be a jarring experience. Recently, misinformation spread about a supposed mass security alert from Google, creating widespread panic. While Google has confirmed these claims are false, the incident serves as a powerful reminder of a constant threat: phishing scams. These fraudulent emails mimic real security warnings to trick you into giving away your personal information.
Phishing Attacks Are Rising: Automate Detection Before They Overwhelm Your SOC
Phishing has become one of the most consistent and damaging entry points for attackers. Today's campaigns aren't the obvious scams we once knew. They look professional, mirror trusted brands, and often come packaged as full-service phishing kits with ready-made infrastructure. For SOC leaders, this means one thing: the volume is climbing, and manual detection is no longer sustainable.
10 Budget Moves to Protect Against Ransomware
Protecting your business from ransomware doesn't require an unlimited budget, but it does take careful planning. Cyberattacks grow more advanced each year. Ignoring preparedness could result in massive downtime or data loss. Investing in the right defenses reduces risk without overspending. Knowing where to allocate funds can mean the difference between prevention and recovery costs spiraling out of control. Here are nine actionable investments with real-world impact to safeguard your organization while keeping budgets in check.
The Rise of AI-Powered Attacks Threatening Crypto Trading Platforms
AI has made it cheap and fast to generate convincing scam campaigns. With scam deposits rising 200% year-over-year and 60% of scam funds now tied to AI-enabled fraud, trading platforms are facing an industrialized wave of deception. What once required sophisticated criminal networks can now be automated by anyone with basic technical skills. Crypto crime drained $2.17 billion in H1 2025 alone, already surpassing 2024's total. While the ByBit hack took the headlines, analysts warn that AI-driven infiltration and phishing are eating away at platforms daily, in smaller but relentless amounts.
Cloudy Summarizations of Email Detections: Beta Announcement
Organizations face continuous threats from phishing, business email compromise (BEC), and other advanced email attacks. Attackers adapt their tactics daily, forcing defenders to move just as quickly to keep inboxes safe. Cloudflare’s visibility across a large portion of the Internet gives us an unparalleled view of malicious campaigns. We process billions of email threat signals every day, feeding them into multiple AI and machine learning models.
Unraveling Phishing Campaigns Flagged by Trustwave's URL Scanner
In recent months, Trustwave SpiderLabs, A LevelBlue Company, saw a significant increase in phishing URLs containing familiar patterns, similar phishing templates, and a resurgence in the use of email marketing platforms. The use of URL redirectors, along with the abuse of Amazon Web Hosting and Cloudflare services, was also widely observed. Trustwave operates a URL-scanning system that we call PageML.
New Phishing Kit Bypasses MFA to Steal Microsoft 365 Credentials
Attackers are using a newly discovered phishing-as-a-service (PhaaS) platform dubbed “Salty 2FA” to target a wide range of industries across North America and Europe, according to researchers at ANYRUN. The phishing attacks are delivered via email and primarily attempt to steal Microsoft 365 credentials. Like many popular commodity phishing kits, Salty 2FA is designed to bypass a variety of multifactor authentication measures.
Are Passkeys Phishing-Resistant?
Are you tired of worrying about phishing attacks and weak passwords? Watch this short video to learn how passkeys work, why they’re phishing-resistant and how they make signing in faster and more secure.
Threat Actors Are Increasingly Abusing Generative AI Tools for Phishing
Cybercriminals are increasingly abusing AI-assisted website generators to quickly craft convincing phishing sites, according to researchers at Palo Alto Networks’ Unit 42. In many cases, even when these services have safeguards in place to prevent abuse, criminals are able to bypass these measures in order to create phishing pages. Unit 42 tested a popular website generator to see how easy it was to spin up a spoofed website.