Singapore authorities are alerting businesses to a surge in deepfake scam video calls, where criminals use AI-generated manipulations to impersonate high-ranking executives and deceive employees into transferring company funds.

North Korean hackers have successfully laundered $300 million from the massive $1.5 billion crypto heist targeting ByBit Exchange.

Cyberattacks take many different forms, from PayPal scam campaigns to infostealer malware, but distributed denial of service (DDoS) attacks can cause widespread disruption—especially when the target is a high-profile platform like Elon Musk’s X (formerly Twitter).

A new report from SoSafe highlights the growing tension between AI adoption and its associated security risks, based on insights from 500 global security professionals and 100 SoSafe customers across 10 countries.

Cybersecurity researchers at Cofense have uncovered a phishing campaign using fake LinkedIn InMail notifications to distribute the ConnectWise RAT. Unlike typical LinkedIn scams that steal credentials, this attack installs a remote access trojan. The fraudulent emails mimic LinkedIn branding but use an outdated template from before the platform’s 2020 redesign, making them appear legitimate at first glance.

Malwarebytes Labs has uncovered a phishing scam exploiting the Docusign API, which allows users to send emails from legitimate Docusign accounts.

Cybersecurity researchers have uncovered a large-scale phishing campaign leveraging fake CAPTCHA images embedded in PDF documents hosted on Webflow’s content delivery network (CDN).