PhaaS Archives • Information Security News

The Seven-Stage Shadow: How the Kratos Phishing Kit Nearly Snared a Cybersecurity CEO cisco-phishing-campaign-sign-in

The Seven-Stage Shadow: How the Kratos Phishing Kit Nearly Snared a Cybersecurity CEO

ddos March 20, 2026

A nefarious endeavor was orchestrated to ensnare the chief executive of a Swedish cybersecurity conglomerate with a...

The Mirror Trap: How the “Starkiller” Phishing Kit Proxies Real Sites to Neutralize MFA

ddos February 23, 2026

A sophisticated new phishing instrument dubbed Starkiller has emerged within clandestine marketplaces, fundamentally altering the mechanics of...

The Identity Epidemic: eSentire Reports a 389% Surge in Account Takeovers North Korea IT Worker Fraud Checkout.com ShinyHunters JLR Cyberattack GDP AI Cybercrime 2026 NuGet Sabotage Code CBO Cyberattack ZeroAccess Botnet Nuclear security Aisuru DDoS Record JLR Production Halt Zero-Day Exploitation Co-op Cyberattack RaidForums Extradition Vastaamo hacking Kaspersky report North Korean hackers Saint Paul Cyberattack NHS Cyberattack Russian APT Cloudflare Breached

North Korea IT Worker Fraud Checkout.com ShinyHunters JLR Cyberattack GDP AI Cybercrime 2026 NuGet Sabotage Code CBO Cyberattack ZeroAccess Botnet Nuclear security Aisuru DDoS Record JLR Production Halt Zero-Day Exploitation Co-op Cyberattack RaidForums Extradition Vastaamo hacking Kaspersky report North Korean hackers Saint Paul Cyberattack NHS Cyberattack Russian APT Cloudflare Breached

The Identity Epidemic: eSentire Reports a 389% Surge in Account Takeovers

ddos January 21, 2026

To infiltrate a corporate network, adversaries are increasingly eschewing the search for server vulnerabilities or the deployment...

CastleLoader PhaaS: GrayBravo Escalates Attacks on Logistics & Booking.com

ddos December 13, 2025

The cybercriminal group GrayBravo, formerly known as TAG-150, continues to evolve at a rapid pace, demonstrating a...

GhostFrame: The Invisible Phishing-as-a-Service That Powered Over a Million Attacks ts-ghostframe

GhostFrame: The Invisible Phishing-as-a-Service That Powered Over a Million Attacks

ddos December 13, 2025

GhostFrame is a newly emerged phishing tool that, in just three months, has already powered more than...

Tykit Phishing: SVG Malware Used to Steal Microsoft 365 Credentials M365 phishing

Tykit Phishing: SVG Malware Used to Steal Microsoft 365 Credentials

ddos October 25, 2025

A multi-stage phishing campaign known as Tykit has been targeting Microsoft 365 corporate users, actively employed to...

PhaaS

The Seven-Stage Shadow: How the Kratos Phishing Kit Nearly Snared a Cybersecurity CEO

The Mirror Trap: How the “Starkiller” Phishing Kit Proxies Real Sites to Neutralize MFA

The Identity Epidemic: eSentire Reports a 389% Surge in Account Takeovers

CastleLoader PhaaS: GrayBravo Escalates Attacks on Logistics & Booking.com

GhostFrame: The Invisible Phishing-as-a-Service That Powered Over a Million Attacks

Tykit Phishing: SVG Malware Used to Steal Microsoft 365 Credentials

You may have missed

The War for Your Documents: Why The Document Foundation is Challenging Microsoft’s OOXML Monopoly

Urgent Patch: Microsoft Defender Update Fixes Critical SYSTEM-Level Privilege Escalation Flaw

The Pre-Boot Breach: Microsoft Releases Critical Emergency Script to Defend Against “YellowKey” BitLocker Bypass

The Reddit Clone: Meta Secretly Launches “Forum” App to Unbundle Facebook Groups