Talos details ARToken, a PhaaS panel tied to EvilTokens that supports device code phishing, BEC workflows, SharePoint theft, ...
Forg365 is a new phishing platform targeting Microsoft 365 accounts with AI emails, AiTM attacks, and device-code abuse.
Multiple Tenda firmware versions contain a backdoor (CVE-2026-11405) that provides access to the device’s web management ...
A new phishing-as-a-service (PhaaS) operation called Forg365 focuses on stealing Microsoft 365 accounts by combining adversary-in-the-middle (AiTM) and device code methods with AI-assisted lure ...
A new phishing-as-a-service (PhaaS) platform dubbed "ARToken" appears to operate as an affiliate of the EvilTokens phishing platform, giving researchers a glimpse into an extensive toolkit designed to ...
The platform, first detected in April 2026, is being actively distributed through Telegram channels and is designed to help even low-skilled attackers conduct sophisticated phishing campaigns.
EvilTokens, the device-code phishing kit that can allow criminals to bypass multi-factor authentication (MFA) and silently authenticate as the victim to the organization's Microsoft 365 applications, ...
Windows can link your PC to your activity, AI agents are sending crypto to scammers, and a router backdoor has no fix. Here's ...
Once upon a time, there was a bit of a fad for fingerprint authentication in laptops and desktop computers. It has long since ...
Buffer overflow vulnerabilities have driven remote code execution for decades and keep appearing in critical network ...
Enhance your device security with layered protection methods, combining antivirus, VPNs, and updates for comprehensive defense against cyber threats.
Singapore’s move to passkeys for SingPass highlights a shift in digital identity. Learn why enterprise adoption requires ...