Financial Spear Phishing Digest

12h ago

Silent Ransom Group's Multi-Channel Tactics Escalate Beyond Email

Silent Ransom Group demonstrates how spear-phishing has evolved into coordinated multi-channel attacks that bypass traditional email defenses.

-...

FBI Warns Companies About Ransom Gang’s Fake IT Support Tactics

techrepublic.com

FBI Warns Companies About Ransom Gang’s Fake IT Support Tactics

12h ago

1d ago

Financial Spear Phishing Digest · 2026-05-28 Daily Digest

No significant updates today.

Why Email Thread Hijacking Makes Compromise Harder to Detect

guardiandigital.com

Why Email Thread Hijacking Makes Compromise Harder to Detect

2d ago

Financial Spear Phishing Digest · 2026-05-27 Daily Digest

No significant updates today.

Phishing-as-a-Service Kit Advisory Issued

isssource.com

Phishing-as-a-Service Kit Advisory Issued

2d ago

Chinese PhaaS Gains Ground on Russian Groups

Chinese-language PhaaS platforms now deliver mature, AI-enhanced services historically dominated by Russian-speaking groups.

Maturity indicators:...

Chinese phishing gangs grow into a force to be reckoned with

helpnetsecurity.com

Chinese phishing gangs grow into a force to be reckoned with

2d ago

FBI Warns Kali365 AiTM Toolkit Bypasses M365 MFA via Token Theft

Kali365 PhaaS deploys AiTM phishing pages that capture live authentication tokens, session cookies, and credentials from Microsoft 365 logins,...

FBI warns of Kali365 phishing kit targeting Microsoft 365 accounts

cyberinsider.com

FBI warns of Kali365 phishing kit targeting Microsoft 365 accounts

2d ago

3d ago

Deepfake Evolution Fuels Financial Spear Phishing

Deepfake technology has matured into a viable spear-phishing vector for BEC and vishing attacks, producing real financial losses through convincing...

Deepfake Fraud: AI Impersonation in Business Attacks | Leonidas Blog

leonidastek.com

Deepfake Fraud: AI Impersonation in Business Attacks | Leonidas Blog

3d ago

Financial Spear Phishing Digest · May 26, 2026 Daily Digest

Authentication Token Theft Campaigns

🔥 MFA Bypass via OAuth and Device Code Phishing: Security experts report that platforms like Kali365 and...

Security experts caution MFA alone can no longer stop threat actors

csoonline.com

Security experts caution MFA alone can no longer stop threat actors

3d ago

MFA No Longer Sufficient Against Token-Stealing Phishing

Token-capture phishing kits like Kali365 and EvilTokens enable even novice attackers to bypass MFA in Microsoft 365 environments by stealing OAuth...

csoonline.com

Security experts caution MFA alone can no longer stop threat actors

3d ago

Candescent-Memcyco Deal Shifts Banks Toward Real-Time Impersonation Defense

Candescent's integration of Memcyco enables pre-login detection of cloned sites and impersonation attempts by feeding fake credentials to attackers...

Candescent Adds Memcyco as Banks Rethink Fraud Prevention Measures

techtimes.com

Candescent Adds Memcyco as Banks Rethink Fraud Prevention Measures

3d ago

4d ago

frank_fbi Scanner: 5-Layer Analysis for Spear Phishing

frank_fbi delivers a 5-layer pipeline tailored for dissecting spear-phishing emails aimed at financial targets.

Core detection stack combines...

akitaonrails/frank_fbi: Scam/Phishing email scanner and analyzer

4d ago·

github.com

4d ago

Ocean's $28M Funding Signals Rising Confidence in AI Email Defenses

Ocean's stealth-to-$28M exit reflects strong investor backing for AI agents that probe every email for hidden malicious intent via sender context,...

Ocean AI email security startup raises $28 million after stealth mode

digitaltoday.co.kr

Ocean AI email security startup raises $28 million after stealth mode

4d ago

Kali365 PhaaS Automates OAuth Token Theft at Scale

Kali365, a subscription PhaaS platform observed April 2026, equips attackers with AI-generated lures, automated templates, real-time tracking...

5d ago

Financial Spear Phishing Digest · May 24, 2026 Daily Digest

Active Exploitation Reports

⚡ Exchange OWA Spoofing Vulnerability: CVE-2026-42897 enables session spoofing via a single crafted email using XSS...

5d ago

AI Phishing Detection: Static Features and Explainability at SecTor 2025

Phishing has shifted from a technical issue to a cognitive problem of manipulation and disinformation, with attackers leveraging LLMs to evade dynamic...

5d ago

M5 Kernel Exploit: Local Escalation Risks for macOS Finance Systems

Researchers reached root shell from unprivileged user in five days on production M5 hardware via data-only attack that sidestepped Memory Integrity...

6d ago

CVE-2026-42897 OWA XSS: Spear-Phishing Vector for On-Prem Exchange

CVE-2026-42897 is an XSS flaw in on-premises Exchange OWA that executes attacker-controlled JavaScript from crafted emails under preview or specific...

Cybersecurity Threat Advisory: Exchange on-premise OWA vulnerability exploited

smartermsp.com

Cybersecurity Threat Advisory: Exchange on-premise OWA vulnerability exploited

6d ago

Financial Spear Phishing Digest · May 23, 2026 Daily Digest

Novel Azure AD Attack Vectors

🔥 Device Code Phishing Is Dead, Long Live New Azure AD Attacks!: Elias Issa video details unauthenticated Azure...

6d ago

DPRK Spear-Phishing Evolves with AI Deepfakes for Crypto Targets

APT37 used AI-generated deepfake government IDs in spearphishing against South Korean security officials, marking the first confirmed DPRK...

STRATEGIC CYBER THREAT INTELLIGENCE BRIEFING

cyberwarrior76.substack.com

STRATEGIC CYBER THREAT INTELLIGENCE BRIEFING

6d ago

Post-Click Network Defenses Critical as Phishing Resurges in Finance

Phishing reclaimed the top initial access vector in Q1 2026, but IPBan-style network-layer controls catch what email filters and MFA miss: the...

Phishing Is Back on Top — What Does That Tell You About IPBan?

ipban.com

Phishing Is Back on Top — What Does That Tell You About IPBan?

6d ago

New Azure AD Attacks Replace Device Code Phishing

Device code phishing is giving way to new Azure AD attack vectors that start with unauthenticated enumeration of vulnerable users and progress to...

High-value BEC persistence and approval-phishing

Digest Calendar

Recent Posts

Silent Ransom Group's Multi-Channel Tactics Escalate Beyond Email

FBI Warns Companies About Ransom Gang’s Fake IT Support Tactics

Financial Spear Phishing Digest · 2026-05-28 Daily Digest

Why Email Thread Hijacking Makes Compromise Harder to Detect

Financial Spear Phishing Digest · 2026-05-27 Daily Digest

Phishing-as-a-Service Kit Advisory Issued

Chinese PhaaS Gains Ground on Russian Groups

Chinese phishing gangs grow into a force to be reckoned with

FBI Warns Kali365 AiTM Toolkit Bypasses M365 MFA via Token Theft

FBI warns of Kali365 phishing kit targeting Microsoft 365 accounts

Deepfake Evolution Fuels Financial Spear Phishing

Deepfake Fraud: AI Impersonation in Business Attacks | Leonidas Blog

Financial Spear Phishing Digest · May 26, 2026 Daily Digest

Authentication Token Theft Campaigns

Security experts caution MFA alone can no longer stop threat actors

MFA No Longer Sufficient Against Token-Stealing Phishing

Security experts caution MFA alone can no longer stop threat actors

Candescent-Memcyco Deal Shifts Banks Toward Real-Time Impersonation Defense

Candescent Adds Memcyco as Banks Rethink Fraud Prevention Measures

frank_fbi Scanner: 5-Layer Analysis for Spear Phishing

akitaonrails/frank_fbi: Scam/Phishing email scanner and analyzer

Ocean's $28M Funding Signals Rising Confidence in AI Email Defenses

Ocean AI email security startup raises $28 million after stealth mode

Kali365 PhaaS Automates OAuth Token Theft at Scale

Financial Spear Phishing Digest · May 24, 2026 Daily Digest

Active Exploitation Reports

AI Phishing Detection: Static Features and Explainability at SecTor 2025

M5 Kernel Exploit: Local Escalation Risks for macOS Finance Systems

CVE-2026-42897 OWA XSS: Spear-Phishing Vector for On-Prem Exchange

Cybersecurity Threat Advisory: Exchange on-premise OWA vulnerability exploited

Financial Spear Phishing Digest · May 23, 2026 Daily Digest

Novel Azure AD Attack Vectors

DPRK Spear-Phishing Evolves with AI Deepfakes for Crypto Targets

STRATEGIC CYBER THREAT INTELLIGENCE BRIEFING

Post-Click Network Defenses Critical as Phishing Resurges in Finance

Phishing Is Back on Top — What Does That Tell You About IPBan?

New Azure AD Attacks Replace Device Code Phishing