The Hacker News

27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials

Researchers uncovered 27 malicious npm packages used over five months to host phishing pages that steal credentials from ...
SDxCentral

OpenAI API breached after old fashioned phishing campaign exposes user details

AI giant OpenAI has revealed its API metadata was exposed in a security breach. A phishing incident at third-party data analytics provider Mixpanel compromised user details, including names, email ...
Bleeping Computer

OpenAI discloses API customer data breach via Mixpanel vendor hack

OpenAI is notifying some ChatGPT API customers that limited identifying information was exposed following a breach at its third-party analytics provider Mixpanel. Mixpanel offers event analytics that ...
SecurityWeek

AI Is Supercharging Phishing: Here’s How to Fight Back

AI has given cybercriminals the ability to operate like Fortune‑500‑scale marketing departments—except their product is account takeover, data theft, and identity fraud. Phishing continues to be one ...
PC World

Beware! How AI is writing phishing emails that look real

Back in February 2025, several media outlets warned of a new threat targeting users of Google’s Gmail email service. Attackers used AI technology to perfect phishing emails and make them look more ...
CBS News

Google lawsuit accuses China-based cybercriminals of massive text-message phishing scams

Google is filing a federal lawsuit against a network of foreign cybercriminals based in China that is accused of launching massive text-message phishing attacks, the tech giant told CBS News in an ...
The Hill

Google sues cybercriminals behind E-ZPass, US Postal Service text scams

Google sued a group of cybercriminals on Wednesday who it alleges are responsible for illegal phishing scams that use company branding to target account holders. The lawsuit filed with the Southern ...
Comicbook.com

Nintendo Warns Switch Online Users of New Scam Trying to Steal Your Data

Click to share on X (Opens in new window) X Click to share on Facebook (Opens in new window) Facebook Nintendo has warned Nintendo Switch Online subscribers on both Switch and Switch 2 about a new and ...
ZDNet

Phishing training doesn't stop your employees from clicking scam links - here's why

Phishing is a major and growing threat to businesses. But phishing awareness training has a minimal success rate. Researchers urge organizations to invest in countermeasures. A new study has confirmed ...
TechRepublic

Proofpoint Exec: ‘Phishing is the Leading Cause of Breaches Globally’

Proofpoint Exec: ‘Phishing is the Leading Cause of Breaches Globally’ Your email has been sent During Proofpoint Protect 2025, company leaders detailed how AI is being used in phishing trends and in ...
Government Technology

Phishing Remains Persistent Threat in K-12 Cybersecurity

Email continues to serve as a primary entry point for cyber attacks against schools and universities, with phishing in particular remaining a major threat, one expert says. Glen Deskin is head of ...
CSOonline

AI-powered phishing scams now use fake captcha pages to evade detection

Attackers are exploiting low-code AI platforms such as Vercel, Netlify, and Lovable to rapidly build phishing sites that look legitimate, trick users, and bypass automated security tools. In an ...