ClickFix is a social engineering attack that tricks users into running malicious commands on their own devices - all under the guise of a routine security check. Disguised as something…
Security researchers here at SlashNext recently uncovered a promotional image on a cybercrime network showcasing a service called “SessionShark O365 2FA/MFA.” SessionShark is a phishing-as-a-service toolkit built to bypass Microsoft…
The Next Evolution in Black-Hat AI A new player has entered the cybercrime AI landscape - Xanthorox AI, a malicious tool that brands itself as the “Killer of WormGPT and…
Phishing attacks continue to evolve, pushing even the most secure authentication methods to their limits. First advertised on cybercrime networks in late January 2025, Astaroth is a brand new phishing…
In today's digital age, email remains the primary conduit for business communication, making it a prime target for cybercriminals. The Frost Radar Research Report on Email Security for 2024 underscores…
We at SlashNext want to draw attention to the alarming trend of cybercriminals exploiting advanced techniques to target retail corporations, as highlighted in the recent FBI Private Industry Notification (PIN).…
SlashNext introduced a groundbreaking service, SlashNext Gen AI for Spam and Graymail, this week. This service is the first of its kind to use a generative AI large language model…
In the world of cybersecurity, it often feels like we're revisiting familiar problems, albeit with a modern twist. The essence of the issue isn't about the emergence of entirely new…
Researching URLs in suspected phishing incidents is a costly and time-intensive process, according to a survey* of 300-plus security decision-makers. Nearly half of all survey respondents (47%) reported spending up…
The healthcare industry is particularly susceptible to phishing attacks as we’ve seen in the past. Here’s why and what can be done to minimize this risk.
