Latest news

Meet Pink: The New Extortion Group Using Vishing and Microsoft 365 Tools to Drain Enterprise Cloud Storage
Cybercrime

Meet Pink: The New Extortion Group Using Vishing and Microsoft 365 Tools to Drain Enterprise Cloud Storage

10 June 2026 dark6

A new extortion group called Pink (CL-CRI-1147) has emerged, targeting enterprise organizations through voice phishing to steal Microsoft 365 credentials...
Read more 0
SmartApeSG Campaign Exploits ClickFix Fake Verification Pages to Deliver NetSupport RAT
Malware

SmartApeSG Campaign Exploits ClickFix Fake Verification Pages to Deliver NetSupport RAT

2 June 2026 dark6

The SmartApeSG campaign is using ClickFix scripts disguised as fake browser verification pages to deploy a two-stage infection chain, culminating...
Read more 0
Hackers Are Calling You on Microsoft Teams Pretending to Be IT Support — How to Detect and Stop the Attack
Phishing

Hackers Are Calling You on Microsoft Teams Pretending to Be IT Support — How to Detect and Stop the Attack

1 June 2026 dark6

Threat actors are systematically abusing Microsoft Teams' external collaboration features to impersonate IT helpdesk staff, convincing employees to grant remote...
Read more 0
Ukrainian Intelligence Report: Russian APT Groups Intensify Cyber Operations — 5,927 Incidents, 37% Rise in 2025
Cybercrime

Ukrainian Intelligence Report: Russian APT Groups Intensify Cyber Operations — 5,927 Incidents, 37% Rise in 2025

23 May 2026 dark6

A new intelligence report from Ukraine's National Security and Defense Council reveals Russian state-sponsored threat groups dramatically escalated cyber operations...
Read more 0
ClickFix Evolves: Attackers Combine Social Engineering With Decade-Old PySoxy SOCKS5 Proxy for Persistent Access
Malware

ClickFix Evolves: Attackers Combine Social Engineering With Decade-Old PySoxy SOCKS5 Proxy for Persistent Access

14 May 2026 dark6

A new ClickFix campaign observed by ReliaQuest pairs the social engineering technique with PySoxy, a 10-year-old Python SOCKS5 proxy, creating...
Read more 0
DigiCert Breached via Weaponized Screensaver: Threat Actor Steals EV Code Signing Certificates to Spread Zhong Stealer
Databreach

DigiCert Breached via Weaponized Screensaver: Threat Actor Steals EV Code Signing Certificates to Spread Zhong Stealer

7 May 2026 dark6

A sophisticated threat actor breached DigiCert's internal support environment in early April 2026 by tricking analysts into executing a disguised...
Read more 0
Email Bombing and Fake IT Support on Microsoft Teams: How Attackers Are Stealing Remote Access
Phishing

Email Bombing and Fake IT Support on Microsoft Teams: How Attackers Are Stealing Remote Access

4 May 2026 dark6

Attackers are combining inbox-flooding email bombing with fake IT support personas on Microsoft Teams to trick employees into granting remote...
Read more 0
Threat Group UNC6692 Breaches Enterprise Networks via Microsoft Teams Impersonation and SNOW Malware Suite
Phishing

Threat Group UNC6692 Breaches Enterprise Networks via Microsoft Teams Impersonation and SNOW Malware Suite

24 April 2026 dark6

The newly identified threat group UNC6692 is compromising enterprise networks by impersonating IT helpdesk staff on Microsoft Teams, deploying a...
Read more 0
Booking.com Data Breach Exposes Customer Reservation Details, Raising Phishing Risk for Travellers
Databreach

Booking.com Data Breach Exposes Customer Reservation Details, Raising Phishing Risk for Travellers

18 April 2026 dark6

Booking.com has notified customers of a data breach that exposed names, addresses, email addresses, phone numbers, and full reservation details....
Read more 0
The Sophisticated ClickFix Sting: How Calisto Disguises Itself to Steal Credentials
Spyware

The Sophisticated ClickFix Sting: How Calisto Disguises Itself to Steal Credentials

5 December 2025 dark6

Calisto, a cyberespionage campaign attributed to the Russian FSB’s Center 18 for Information Security (military unit 64829), has been making...
Read more 0
DoorDash data breach: a social engineering compromise
Databreach

DoorDash data breach: a social engineering compromise

18 November 2025 dark6

The recent disclosure by DoorDash regarding a cybersecurity incident, initially attributed to a social engineering attack, warrants a detailed examination...
Read more 0