Email security

Indiana officials are urging residents to delete phishing emails impersonating state agencies and falsely claiming unpaid toll violations, StateScoop reports.

Major government software service provider Granicus was noted by Indiana and New Mexico's Doa Ana County to have had its GovDelivery email alert system exploited in phishing attacks, TechCrunch reports.

Browser fingerprinting and additional payload encryption are the most recent methods used.

A recent malspam campaign revealed a payload nested within two .NET assemblies.

Updated attack arsenal leveraged in MirrorFace attacks against Japan, Taiwan Attacks with the ROAMINGHOUSE malware and an updated ANEL backdoor have been launched by Chinese hacking operation MirrorFace, also known as Earth Kasha, against Japanese and Taiwanese government agencies and public entities as part of a new cyberespionage campaign, according to The Hacker News.

Intrusions with CoGUI commenced with the distribution of phishing emails urging immediate recipient action.

The Coalition 2025 Cyber Claims Report revealed an increase in severity of BEC losses in 2024.

Phishing has evolved—fast. What started as basic email scams has transformed into AI-powered cyber deception. Phishing 1.0: Early phishing relied on spam emails, fake banking alerts, and malware links to trick users into clicking. These attacks were easy to spot but still caused billions in damage. Phishing 2.0: Attackers got smarter—instead of...