10,000 Fake Domains and Counting In early 2024, the FBI issued a stark FBI warning on smishing texts targeting Americans in every state. The attack campaign involved over 10,000 newly registered domains impersonating toll collection agencies, delivery services, and government agencies. Victims received text messages claiming they owed
What a Phish Setlist Is — And Why Your Security Team Needs One In March 2024, a mid-size accounting firm lost $2.1 million after an employee clicked a single phishing email disguised as a DocuSign request during tax season. The firm had no phishing simulation program. No playbook. No plan.
A Single Email Cost This Company $25 Million In early 2024, a finance worker at engineering firm Arup was tricked into transferring $25 million after a deepfake video call that started with one phishing email. That's not a hypothetical. That happened. And it began the same way nearly
In January 2024, a finance employee at a multinational firm in Hong Kong wired $25 million to threat actors after a video call with what appeared to be the company's CFO. It was a deepfake. The attack started with a single phishing email. If your phishing definition still
In March 2024, a finance employee at a Hong Kong-based multinational wired $25.6 million to threat actors after a video call with what appeared to be the company's CFO. It was a deepfake. But the attack started the same way almost every phishing attack starts — with a
In August 2024, the FBI's Internet Crime Complaint Center warned that business email spoofing remained one of the top reported cybercrime vectors, with Business Email Compromise (BEC) losses exceeding $2.9 billion in 2023 alone. That number doesn't even capture the full picture — because spoofing extends
In January 2024, a finance employee at a multinational firm in Hong Kong transferred $25.6 million to criminals after a video call with what appeared to be the company's CFO. Every person on that call was a deepfake. That's where phishing lives now — far beyond
In January 2024, a finance employee at British engineering firm Arup joined a video call with what appeared to be the company's chief financial officer and several colleagues. Every face on the screen was a deepfake. The attackers had spent weeks researching the company's org chart,
In March 2024, a finance employee at a Hong Kong multinational wired $25.6 million to criminals after a video call with what appeared to be the company's CFO and several colleagues. Every person on that call was a deepfake — a sophisticated spoof that fooled a trained professional
In May 2024, the FBI's Internet Crime Complaint Center (IC3) released its annual report showing over $12.5 billion in cybercrime losses for 2023 — with phishing and spoofing topping the list at nearly 300,000 complaints. Now, the FBI warns Gmail users of sophisticated AI-driven phishing attacks that
