Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

knowbe4

Social Engineering Campaign Targets Microsoft Teams Users

Dec 10, 2025 By KnowBe4 Team In KnowBe4
Researchers at CyberProof warn that threat actors are launching phishing attacks via Microsoft Teams' “Chat with Anyone” feature, which lets external users send direct messages via email addresses. “Microsoft Teams now allows users to send direct chat invitations to any email address, even if recipients aren’t part of a Teams tenant,” the researchers explain.
Read Post
The Hidden Vulnerabilities Sitting On Everyday Work Devices

The Hidden Vulnerabilities Sitting On Everyday Work Devices

Nov 26, 2025 By SecuritySenses In SecuritySenses
In the modern workplace, the hum of productivity is typically accompanied by the quiet, persistent glow of computer monitors, the chime of incoming emails, and the seamless operation of countless software applications. These devices, such as laptops, desktops, smartphones, and tablets, are the engines of business operations. However, beneath the surface of this digital efficiency lies a landscape of hidden vulnerabilities. These aren't the flaws of sophisticated cyber-attacks, but the mundane, overlooked security gaps inherent in the very tools employees use every day.
Read Post
Arctic Wolf

How To Combat AI-Enhanced Social Engineering Attacks

Nov 25, 2025 By Arctic Wolf In Arctic Wolf
Artificial intelligence (AI) has supercharged social engineering. Global management consulting firm McKinsey & Company reported a 1,200% global surge in phishing attacks since the rise of generative AI in the latter half of 2022. And it’s not just the number of attacks that’s climbing; it’s also the success rate. Arctic Wolf’s Human Risk Behavior Snapshot: 2nd Edition reveals that nearly two-thirds of IT and security leaders self-reported falling for a phishing attempt.
Read Post
Why Small Businesses Are Prime Targets for Hackers

Why Small Businesses Are Prime Targets for Hackers

Oct 31, 2025 By SecuritySenses In SecuritySenses
Small businesses are prime targets because attackers can scale low-effort techniques across thousands of similar environments, while many SMBs lack full-time security staff and mature controls. New data shows SMBs are targeted far more often than large organizations, and reported cybercrime losses climbed to 16.6 billion dollars in 2024. Strong identity, basic hardening, and regular validation reduce the risk fast.
Read Post
ssl2buy

Social Engineering in Cybersecurity: Latest Threats and Protection Methods

Oct 8, 2025 By Ann-Anica Christian In SSL2BUY
Technical defenses keep evolving but attackers have learned that people are often the weakest link. Social engineering has quietly outpaced many technical intrusions because it reliably targets human behavior rather than firewalls or intrusion detection systems. 2025 Verizon Data Breach Investigations Report highlights that social engineering remains one of the top three breach patterns, with phishing and pretexting consistently leading incident categories.
Read Post
knowbe4

"Yep, I got pwned. Sorry everyone, very embarrassing."

Sep 10, 2025 By Martin Kraemer In KnowBe4
In essence, that is the disclosure and notification message that the open-source developer "qix" sent to the world when he was social engineered to give up access credentials to his GitHub account. Using his account, the attackers inserted malware in a series of popular NPM packages to direct cryptocurrency payments to their own wallets.
Read Post
knowbe4

Report: Cybercriminals are Hiring Social Engineering Talent

Aug 28, 2025 By KnowBe4 Team In KnowBe4
ReliaQuest has published a report on the cybercriminal recruitment ecosystem, finding that fluent English speakers with social engineering skills are highly sought-after. “Among the most in-demand skills is English-speaking social engineering, with job posts more than doubling from 2024 to 2025,” the researchers write.
Read Post
lookout

The Social Engineering Threats You Can't Ignore - And Why Most Are Inherently Mobile Problems

Aug 22, 2025 By Jim Dolce In Lookout
When most people think about cybersecurity, they picture firewalls, anti-virus software, and complex passwords. But the weakest link isn’t a server or a laptop—it’s a person. Social engineering attacks exploit human behavior rather than technical vulnerabilities, and four techniques dominate the landscape today: phishing, smishing, vishing, and quishing.
Read Post
knowbe4

Warning: Social Engineering is a Growing Threat to the Industrial Sector

Aug 21, 2025 By KnowBe4 Team In KnowBe4
Social engineering attacks are a growing threat to operational technology (OT) environments, Industrial Cyber reports. Cyberattacks against these environments can be particularly damaging since they have the potential to cause physical disruptions.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.