phising - Softonic English

Access keys are revolutionizing digital access

In the ongoing evolution of cybersecurity, passkeys are emerging as a convenient solution for accessing accounts without the need for traditional passwords. This system uses cryptography to authenticate the user, allowing unlocking through biometric methods such as fingerprint or facial recognition, as well as PINs. Thus, it eliminates one of the biggest inconveniences of today’s digital life: the need to remember multiple passwords. Change is coming One of the main benefits of passkeys is their resistance to phishing. Unlike passwords that can be stolen through […]

In the continuous evolution of cybersecurity, passkeys are emerging as a convenient solution for accessing accounts without the need for traditional passwords. This system uses cryptography to authenticate the user, allowing unlocking through biometric methods such as fingerprint or facial recognition, as well as PINs. Thus, it eliminates one of the biggest inconveniences of today’s digital life: the need to remember multiple passwords.

Change is Coming

One of the main benefits of passkeys is their resistance to phishing. Unlike passwords that can be stolen through fake websites, passkeys do not allow this type of attack, significantly increasing security during login. Leading tech companies like Apple, Google, and Microsoft are backing this new standard, which is presented as a collective philosophy rather than just a commercial product.

In addition to improving security, passkeys promise to enhance the user experience by eliminating additional steps, such as verification via SMS or difficult-to-remember codes. However, concerns related to device loss persist, although it has been established that the recovery of passkeys can be linked to cloud synchronization or between devices.

Despite its advantages, the widespread adoption of passkeys faces obstacles. Not all users are ready for this transition, especially on platforms that still use traditional passwords or operate with hybrid systems. This is particularly relevant in shared environments, such as family or work devices, where managing access securely remains a challenge.

From a business perspective, passkeys are attractive due to their ability to reduce account theft and issues related to forgotten passwords. As more organizations adopt this technology, we could be witnessing the twilight of passwords as we know them. Maintaining a sensible backup method will be key in this new digital security landscape.

Las claves de acceso están revolucionando el acceso digital

En la evolución continua de la ciberseguridad, los passkeys están emergiendo como una solución conveniente para el acceso a cuentas sin la necesidad de contraseñas tradicionales. Este sistema utiliza criptografía para autenticar al usuario, permitiendo el desbloqueo a través de métodos biométricos como la huella dactilar o el reconocimiento facial, así como PINs. Así, se elimina uno de los mayores inconvenientes de la vida digital actual: la necesidad de recordar múltiples contraseñas.

El cambio está llegando

Uno de los principales beneficios de los passkeys es su resistencia al phishing. A diferencia de las contraseñas que pueden ser robadas a través de sitios web falsos, los passkeys no permiten este tipo de ataque, lo que incrementa significativamente la seguridad en el inicio de sesión. Compañías tecnológicas líderes como Apple, Google y Microsoft están respaldando este nuevo estándar, que se presenta como una filosofía colectiva en lugar de un simple producto comercial.

Además de mejorar la seguridad, los passkeys prometen facilitar la experiencia de los usuarios al eliminar pasos adicionales, como la verificación mediante SMS o códigos difíciles de recordar. Sin embargo, persisten preocupaciones relacionadas con la pérdida de dispositivos, aunque se ha establecido que la recuperación de passkeys puede vincularse con la sincronización en la nube o entre dispositivos.

A pesar de sus ventajas, la adopción generalizada de passkeys enfrenta obstáculos. No todos los usuarios están listos para esta transición, especialmente en plataformas que siguen utilizando contraseñas tradicionales o que operan con sistemas híbridos. Esto es especialmente relevante en entornos compartidos, como dispositivos familiares o laborales, donde gestionar el acceso de manera segura sigue siendo un reto.

Desde una perspectiva empresarial, los passkeys son atractivos debido a su capacidad para reducir el robo de cuentas y los problemas relacionados con contraseñas olvidadas. A medida que más organizaciones adopten esta tecnología, podríamos estar ante el ocaso de las contraseñas como las conocemos. Mantener un método de respaldo sensato será clave en este nuevo panorama de seguridad digital.

These new phishing tactics that take advantage of trust among senior executives

Recently, a sophisticated phishing attack has put companies on alert, especially those operating in the Middle East. Malicious actors managed to impersonate an ongoing email thread between high-level executives, using a phishing link that mimicked a Microsoft authentication form, demonstrating a clever execution of social engineering. The clever impersonation technique The attack began with a compromised sales manager account in a contracting company, allowing the insertion of a malicious message into a legitimate conversation. This tactic exploits trust […]

Recently, a sophisticated phishing attack has put companies on alert, especially those operating in the Middle East. Malicious actors managed to impersonate an ongoing email thread between high-level executives, using a phishing link that mimicked a Microsoft authentication form, demonstrating a clever execution of social engineering.

The Ingenious Identity Theft Technique

The attack began with a compromised sales manager account at a contracting company, allowing the insertion of a malicious message into a legitimate conversation. This tactic, which exploits trust and communication within organizations, has proven to be particularly effective, as attackers took advantage of genuine emails between employees to create an appearance of normalcy in their phishing emails.

Researchers have linked the incursion to an active campaign since December 2025, which has primarily targeted companies in the financial and energy sectors in the region. The investigation revealed the use of EvilProxy, a phishing tool that evades traditional detections, by introducing a proxy system that allows attackers to operate undetected.

This type of attack not only takes advantage of technical vulnerabilities but also crafts human workflows, making emails appear perfect, which makes them harder to detect by filtering systems like DMARC. As remote work becomes normalized and asynchronous approval processes become common, companies face an increased risk of compromises.

The importance of having adequate defense measures has grown significantly. Tools like ANY.RUN provide the ability to detect phishing behaviors in real-time, shortening response times to incidents and strengthening corporate cybersecurity.

An analysis of the black market reveals that more than 300 million records have been compromised so far in 2025

A recent analysis of the black market has revealed that more than 300 million records have been compromised in 2025, to date. This alarming figure suggests a significant increase in the exposure of sensitive data compared to previous years, highlighting a concerning trend in cybersecurity. Many people have seen all their data exposed on the Internet. The leaked data may include personal, professional, and financial information of individuals and organizations. The implications of these leaks are serious, as they can lead to both legal and reputational consequences for the affected entities. In a world where […]

A recent analysis of the black market has revealed that more than 300 million records have been compromised in 2025 to date. This alarming figure suggests a significant increase in the exposure of sensitive data compared to previous years, highlighting a concerning trend in cybersecurity.

Many people have had all their data exposed on the Internet

The leaked data may include personal, professional, and financial information of individuals and organizations. The implications of these leaks are serious, as they can lead to both legal and reputational consequences for the affected entities. In a world where data management is becoming increasingly critical, organizations must be more vigilant and prepared to withstand attacks that seem to become more sophisticated each year.

In particular, this increase in data breaches indicates a scenario in which companies and individuals are more vulnerable than ever. The nature of the breaches can vary, from targeted attacks to the use of weak security practices by large corporations. This emphasizes the urgent need to implement more robust cybersecurity measures and educate employees about the importance of protecting sensitive information.

While some speculation suggests that this increase in cyberattacks could be related to the massive adoption of digital technologies and remote work, companies must act quickly to safeguard their information. Experts advise conducting regular security audits and updating data protection policies to mitigate the risk of future breaches.

The current situation is a reminder that, in the digital age, information security is more vital than ever, and special attention must be paid to the protection of personal and corporate data. This phenomenon not only affects corporations but can also have significant repercussions for ordinary consumers.

Avast Free Antivirus DOWNLOAD

Discord knows no rest and begins to distribute a new trojan through direct messages

Cybersecurity researchers have reported on a new Rust-based trojan called ChaosBot, initially detected in September 2025 in a financial services environment. This malware allows operators to execute remote commands on compromised systems and has been observed interacting through Discord profiles. Users associated with this activity are ‘chaos_00019’ and ‘lovebb0024’. Never open files from unknown profiles or suspicious messages ChaosBot is predominantly distributed through phishing messages that include a malicious Windows shortcut. When a user opens the file, a PowerShell command is executed that downloads […]

Cybersecurity researchers have reported on a new Rust-based Trojan called ChaosBot, initially detected in September 2025 in a financial services environment. This malware allows operators to execute remote commands on compromised systems and has been observed interacting through Discord profiles. Users associated with this activity are ‘chaos_00019’ and ‘lovebb0024’.

Never open files from unknown profiles or suspicious messages

ChaosBot is predominantly distributed through phishing messages that include a malicious Windows shortcut. When a user opens the file, a PowerShell command is executed that downloads the malware. This disguises itself as a malicious DLL file and seeks to establish a persistent access tunnel to the compromised network through a reverse proxy. During its operation, the malware can receive additional instructions through the Discord channel set up by the attackers, enhancing its command and control capabilities.

In addition, a variant of ransomware associated with Chaos has been identified that is distinguished by deleting files instead of encrypting them. This variant also employs techniques to manipulate the clipboard, with the aim of redirecting cryptocurrency transfers, thereby increasing its danger and complexity. This dual approach of destructive extortion and financial theft reflects a shift towards more aggressive and multifaceted tactics by malicious actors.

ChaosBot has proven to be difficult to detect, using techniques to evade tracking on Windows systems, such as modifying functions and checking MAC addresses associated with virtual machines. Analysts warn that this malware not only poses a direct threat to the security of systems but also to the finances of users, affecting cryptocurrency platforms.

Discord DOWNLOAD

This is CometJacking: a new way to steal all your data

Cybersecurity researchers have revealed a new attack called CometJacking, targeting the Comet browser from Perplexity. This attack is based on the injection of malicious prompts within seemingly harmless links, allowing the theft of sensitive data from connected services like Gmail and Calendar. The threat is activated by clicking on a specially designed link, which causes the browser to execute a hidden prompt, capturing personal information and sending it to a server controlled by the attacker. A very serious security issue The research has highlighted how a single poisoned link can transform an AI browser, which is […]

Cybersecurity researchers have revealed a new attack called CometJacking, aimed at Perplexity’s Comet browser. This attack is based on injecting malicious prompts into seemingly harmless links, allowing the theft of sensitive data from connected services like Gmail and Calendar. The threat is activated by clicking on a crafted link, which causes the browser to execute a hidden prompt, capturing personal information and sending it to a server controlled by the attacker.

A very serious security problem

The investigation has highlighted how a single poisoned link can transform an AI browser, which is considered a trusted assistant, into an internal threat. Michelle Levy, head of security research at LayerX, stated that “it’s not just about stealing data; it’s about hijacking the agent that already has the keys”. This type of attack bypasses Perplexity’s data protection measures using simple obfuscation tricks like Base64 encoding.

The CometJacking attack operates in five steps: it is activated when a victim clicks on a malicious link, either in a phishing email or on a webpage. Instead of directing the user to the intended destination, the link instructs the Comet browser’s artificial intelligence to execute a hidden prompt that captures user data and sends it to an endpoint controlled by the attacker.

Despite the fact that Perplexity has categorized the findings as having “no impact on security,” the situation highlights the inherent vulnerabilities of native artificial intelligence tools. Organizations must review and improve controls to detect and neutralize these malicious prompts, as attacks can escalate into widespread campaigns, turning browsers into checkpoints within corporate networks.

Avast Free Antivirus DOWNLOAD

Microsoft dismantles a financial threat group that has already stolen more than 5,000 credentials to date

Microsoft has dismantled the infrastructure of RaccoonO365, a financial threat group that has facilitated the theft of more than 5,000 Microsoft credentials since July 2024, by seizing 338 domains related to this criminal activity. According to a report published by the company, RaccoonO365, also known as Storm-2246, has become the fastest-growing phishing tool used by cybercriminals, operating in 94 countries and targeting more than 2,300 organizations in the United States through tax-related themed phishing campaigns. A high-profile operation The phishing kits offered by RaccoonO365, which include emails […]

Microsoft has dismantled the infrastructure of RaccoonO365, a financial threat group that has facilitated the theft of more than 5,000 Microsoft credentials since July 2024, by seizing 338 domains related to this criminal activity. According to a report published by the company, RaccoonO365, also known as Storm-2246, has become the fastest-growing phishing tool used by cybercriminals, operating in 94 countries and targeting more than 2,300 organizations in the United States through tax-related themed phishing campaigns.

A high-profile operation

The phishing kits offered by RaccoonO365, which include fraudulent emails and counterfeit websites branded with Microsoft, have particularly impacted organizations in the healthcare sector in the United States. “The rapid evolution and accessibility of services like RaccoonO365 indicate that we are entering a new alarming phase of cybercrime, where scams and threats are likely to multiply exponentially”, warned Steven Masada, assistant attorney in the Digital Crimes Unit at Microsoft.

Microsoft, in collaboration with Cloudflare and Chainalysis, carried out this operation under a court order from the Southern District Court of New York, successfully identifying and tracking cryptocurrency transactions linked to the criminal organization. Joshua Ogundipe, a Nigerian accused of leading this group, allegedly obtained more than $100,000 in cryptocurrencies by selling phishing kits to a community of over 850 members on Telegram. The company has noted that Ogundipe has a background in programming and would be responsible for much of the code of this criminal platform.

However, Microsoft also emphasized the deficiencies of international regulations, highlighting the lack of government cooperation in the fight against cybercrime as a significant obstacle. Despite the success of this intervention, experts anticipate that cybercriminals will attempt to rebuild their operations, which requires a constant effort from authorities to close the existing gaps in current legislation.

Microsoft 365 DOWNLOAD

This phishing campaign uses legitimate RMM software to deceive victims

A new phishing campaign has emerged, marking a significant shift in the tactics used by cybercriminals. According to a report from Abnormal AI, attackers are employing legitimate remote monitoring and management (RMM) software to lure their victims, representing an alarming evolution in the way these digital frauds are carried out. The increasingly sophisticated new tactics The use of legitimate RMM software not only puts unsuspecting users at risk but also makes it harder for security platforms to detect these attacks. The campaign has been specifically designed […]

A new phishing campaign has emerged, marking a significant shift in the tactics used by cybercriminals. According to a report by Abnormal AI, attackers are using legitimate remote management software (RMM) to lure their victims, representing an alarming evolution in the way these digital frauds are carried out.

The increasingly sophisticated new tactics

The use of legitimate RMM software not only puts unsuspecting users at risk but also hinders the detection of these attacks by security platforms. The campaign has been specifically designed to deceive users by offering programs that appear to be safe and trustworthy. This causes victims, believing they are installing a legitimate tool, to grant access to their systems to the attackers.

This advance in phishing methods highlights the growing sophistication of cybercriminals, who are always looking for new ways to exploit user trust. Instead of traditional suspicious emails, this campaign uses a strategy that presents itself as legitimate, increasing the chances of success for the attacks. Experts suggest that users should be increasingly vigilant for warning signs and verify the authenticity of any software they are considering downloading.

Although it is a concerning phenomenon, some analysts believe that this type of attack could be just the tip of the iceberg. Speculation suggests that cybercriminals will continue to refine their tactics in an effort to evade current security measures. The increase in the use of tools that seem trustworthy underscores the importance of ongoing cybersecurity education for users, as well as the need for companies to strengthen their defense protocols.

A new phishing scam targets users with personalized messages

A global phishing campaign has been identified that employs personalized emails and fake websites as a method to distribute malware. This technique, which has caught the attention of cybersecurity experts, uses a tool called UpCrypter to carry out the distribution of malicious software. Posing as legitimate organizations, the strategy behind this campaign consists of sending emails designed to look legitimate, allowing attackers to deceive victims and make them interact with links that lead to fraudulent sites. These sites are cleverly designed to mimic well-known organizations, thus increasing […]

A global phishing campaign has been identified that uses personalized emails and fake websites as a method to distribute malware. This technique, which has caught the attention of cybersecurity experts, employs a tool called UpCrypter to carry out the distribution of malicious software.

Pretending to be legitimate organizations

The strategy behind this campaign consists of sending emails designed to look legitimate, allowing attackers to deceive victims and make them interact with links that lead to fraudulent sites. These sites are cleverly designed to mimic well-known organizations, thus increasing the chances that users will fall into the trap. It has been observed that the emails are highly personalized, suggesting that the attackers have conducted prior research on their targets.

UpCrypter, the tool used for malware distribution, has been the subject of study by cybersecurity researchers. This software allows attackers to hide the true purpose of malicious files, making it difficult for traditional security programs to detect them. Thus, cybercriminals can disseminate malware more effectively and ultimately compromise the security of entire devices and networks.

Specialized circles are urging users to take precautions, highlighting the importance of verifying the authenticity of emails before clicking on unknown links. Organizations must implement robust security practices and ensure that their employees are trained to recognize phishing attempts. Although this campaign has been warned about, experts continue to investigate its repercussions and the extent of the malware. Cybersecurity companies may continue to uncover more about the tactics used in this type of attack.

If you receive an invitation for the beta of the new Battlefield, be careful: it could be a scam

Recently, an increase in interest in Battlefield 6 following its official reveal has attracted the attention of scammers who are sending phishing links disguised as invitations for game testing. According to Battlefield Bulletin, fraudulent ads have been detected on Instagram promising access to these tests, but in reality, they are attempts to steal Steam accounts. These misleading offers include descriptions that seem taken from an official ad, such as evaluating game features and testing server infrastructure. The leaks keep happening with the game. A fraudulent ad even […]

Recently, an increase in interest for Battlefield 6 following its official reveal has attracted the attention of scammers who are sending phishing links disguised as invitations for game testing. According to Battlefield Bulletin, fraudulent ads have been detected on Instagram promising access to these tests, but in reality, they are attempts to steal Steam accounts. These deceptive offers include descriptions that seem taken from an official ad, such as evaluating game features and testing server infrastructure.

The leaks keep happening with the game

A fraudulent announcement even refers to Battlefield 6 as an early access game, which is clearly incorrect. Players are warned not to click on these links, as legitimate invitations for testing are sent exclusively through EA’s Battlefield Labs website. Therefore, it is essential for users to stay alert and be cautious of these types of phishing tactics.

Amid this wave of fraud, many legitimate leaks about Battlefield 6 have also emerged, providing valuable information to the gaming community. Extensive gameplay segments, details about the release date, and aspects of vehicle combat, as well as more conservative-looking character designs have been shared. Additionally, a dataminer has discovered that the new title will include an iconic campaign mission, as well as a battle royale mode, two elements that have been very popular in the franchise in the past.

Fans must distinguish between authentic leaks and scams. While enjoying legitimate information, it is vital to completely discard any suspicious trial offers to protect their accounts and personal data.

Steam DOWNLOAD