Attack Library
Spoofed DHL Email with Malicious QR Code Targets Recipients in Likely AI-Generated Credential Theft Attempt
Attackers impersonate DHL and email a PDF attachment containing a malicious QR code linked to a phishing page.
Fake Shopify Deactivation Notice Exploits Telegram to Harvest Sensitive Information in Likely AI-Generated Attack
Cybercriminals impersonate Shopify to mislead recipients into engaging with a fraudulent Telegram support account.
Cybercriminals Send Bogus Microsoft Email System Update Alert in Likely AI-Generated Phishing Attack
Threat actors impersonate Microsoft and use a fake notification regarding a critical error to deceive targets into revealing sensitive information.
Netflix Impersonator Attempts Credential Theft in Likely AI-Generated Phishing Attack
Utilizing a look-alike domain and mimicked branding, threat actors hope to deceive targets into revealing sensitive information.
Fake Quickbooks Suspension Email Aims to Steal Account Information in Likely AI-Generated Phishing Attack
Using a spoofed email, threat actors impersonate Quickbooks and attempt to manipulate targets into revealing sensitive information.
monday.com Impersonator Sends Fake HR Update in Likely-AI Generated Phishing Attack
Cybercriminals use a fraudulent employee code of conduct update to manipulate recipients into revealing private details.
Threat Actor Exploits Fear of a Data Breach to Distribute Malware in Likely AI-Generated Attack
Cybercriminals attempt to convince targets their private data has been compromised in order to trick them into downloading malware from a legitimate file-sharing site.
Likely AI-Generated Phishing Attack Exploits Compromised Email to Impersonate New York State Department of Taxation
Cybercriminals manufacture a sense of urgency with a fake tax violation notice to trick recipients into disclosing sensitive information.
DHL Impersonator Sends Fraudulent Failed Delivery Notification Containing Malicious QR Code
An attacker claims a pending delivery is awaiting address confirmation to deceive the target into visiting a phishing site.
Phisher Impersonates Regions Bank and Sends Fraudulent Account Verification Request in Likely AI-Generated Attack
Cybercriminals create a sense of urgency with a spoofed Regions Bank email, tricking recipients into divulging personal details through a phishing site.
Apple Pay Impersonator Spoofs Legitimate Domain to Steal Login Credentials in Likely AI-Generated Attack
Attackers exploit the urgency of unauthorized activity alerts to deceive recipients into providing sensitive information.
American Express Impersonator Uses URL Shortener and Spoofed Email Address in Phishing Attack
Attackers exploit the urgency of credit issues to deceive recipients into providing personal details through a spoofed American Express email.
Amazon Impersonator Uses Potentially Compromised Email to Steal Login Credentials in Likely AI-Generated Phishing Attack
Attackers use a spoofed email address and exploit the urgency of security issues with an Amazon account to deceive the recipient into providing sensitive information.
PayPal Impersonator Sends Unauthorized Transaction Alert Using Fake Outlook Email in Likely AI-Generated Vishing Attack
A threat actor exploits fears of identity theft to manipulate the recipient into contacting fraudulent support numbers and initiate the next phase of the attack.
Venmo Impersonator Uses Free Russian Webmail Account to Initiate Fraudulent Fund Transfer
Attackers exploit the trust in Venmo's brand to deceive recipients into refunding non-existent payments.
Threat Actor Uses Impersonation and Spoofing to Deliver Malicious Payload in Likely AI-Generated Attack
Using a spoofed email address, an attacker poses as a known brand and attempts to convince the target to open a malicious attachment.
Threat Actor Impersonates Spotify and Attempts to Steal Payment Details in Likely AI-Generated Phishing Attack
Attackers use a spoofed email to exploit the trust of Spotify users and direct them to a phishing site under the guise of updating payment information.
Threat Actor Impersonates Bankrupt Cryptocurrency Exchange FTX Trading Ltd. in Likely AI-Generated Phishing Attack
Attackers exploit the demise of FTX Trading Ltd. to deceive recipients into divulging sensitive information through a fraudulent withdrawal scheme.
Phisher Expertly Impersonates DHL Branding in Likely AI-Generated Attack
Using a fraudulent notification regarding a delivery issue, an attacker hopes to compel a target to divulge sensitive information.
Likely AI-Generated Vishing Attack Leverages Impersonation of Peacock and Fake Subscription Confirmation
A threat actor claims the target has signed up for the streaming service and includes a fabricated invoice to compel them to contact a fake customer support line.
Likely AI-Generated Phishing Attack Spoofs Craigslist to Steal Payment Information
A cybercriminal impersonates Craigslist and sends a likely AI-generated email regarding a payment failure to convince the target to provide payment details.
Likely AI-Generated Phishing Attack Uses Compromised Email Account to Impersonate Australia and New Zealand Banking Group
Attackers use an AI-generated email to exploit the trust of a known brand and direct recipients to a phishing site under the guise of enhancing account security.
Threat Actor Impersonates IRS and Manufactures Urgency in Likely AI-Generated Phishing Attack
An attacker poses as the IRS and claims there's an issue with the target's tax return to deceive them into revealing private information.
Threat Actor Compromises Faculty Email to Phish University VIP in Likely AI-Generated Attack
After compromising a legitimate email account, an attacker attempts credential theft by inviting a target to apply for an employee benefits program.
Attacker Impersonates Cryptocurrency Service in Likely AI-Generated, Multi-Step Credential Theft Attempt
An attacker impersonates payment solutions provider Wirex using a convincing account verification email and branded phishing page to steal login credentials.
Multi-Step Vishing Attempt Features Impersonation of PayPal and McAfee
After spoofing a PayPal customer service email, an attacker sends a fraudulent notification regarding a bogus McAfee charge to compel the target to call a fake support center and cancel the transaction.
Likely AI-Generated Coinbase Impersonator Creates Fake Landing Page in Multi-Step Credential Phishing Attack
By mimicking Coinbase’s branding in both the email and landing page, an attacker attempts to create a sense of urgency around suspicious account activity and prompt immediate action from the target.
Threat Actor Convincingly Impersonates Employee Requesting Direct Deposit Update in Likely AI-Generated Attack
The attacker uses a Gmail account to send an email free of grammatical errors and with no malicious payloads to attempt payroll diversion.
Likely AI-Generated Credential Vishing Attack Features Impersonation of Walmart
An attacker attempts to create a sense of urgency and compel the target to call a fake customer service number by sending a bogus receipt for a recent iPhone purchase.
Likely AI-Generated Financial Services Scam Features Social Engineering Techniques for Future Credential Theft
An attacker attempts to develop trust with a recipient and set the stage for future credential theft by referencing past interactions and updates on a $800,000 investment.
Likely AI-Generated Microsoft Impersonator Sends Fake Attachment in Malware Attack
Using a legitimate domain as a mask, an attacker attempts to infect a recipient’s computer with malware via an HTML attachment.
Likely AI-Generated Credential Phishing Attack Features Impersonation of Medicare Australia
An attacker pretends to be from Medicare Australia and informs the recipient that their Medicare services have been suspended due to insufficient contact information.
Insurance Company Impersonator Provides Fake Benefits Document in Likely AI-Generated Attempted Malware Delivery
An attacker leverages a legitimate-looking domain as a mask to send a likely malware-infected document purportedly about benefits information.
TSB Bank Impersonator Uses Look-alike Domain in Likely AI-Generated Credential Phishing Attack
An attacker utilizes an unregistered look-alike domain as a mask to impersonate TSB Bank and steal sensitive information.
Netflix Impersonator Likely Utilizes Generative AI in Credential Phishing Attack
An attacker takes control of a legitimate domain to impersonate Netflix customer support in a credential theft attempt.
Attacker Takes Over Established Domain in Likely AI-Generated Credential Phishing
An attacker breaks into an 21-year-old email account and links to a malicious IPFS gateway to steal sensitive information.
Likely AI-Generated Metlife Advisor Impersonator Attempts Financial Services Scam
An attacker uses social engineering techniques to build trust with a recipient before likely stealing sensitive information and money.
Sophisticated USPS Impersonator Attempts Credential Theft in Multi-Layered Attack
An attacker likely uses generative AI to create a fake automated USPS message about incorrect address information, including links to a fake USPS landing page.
Investment Opportunity Spoofer Offers Financial Services in Likely AI-Generated Scam
An attacker offers business financing options and promises commission for all successful referrals using a spoofed address.
Cosmetics Brand Impersonator Attempts Payment Fraud in Fake Billing Scam
An attacker uses generative AI to attempt payment fraud by impersonating an Australian cosmetics brand.
Freight Company Impersonated in Likely AI-Generated Credential Theft Attempt
An attacker utilizes a close resemblance freight company DAT One's domain in a credential theft attempt.
Australian Government Spoofer Promises Tax Refund in Likely AI-Generated Credential Theft
An attacker pretends to be from the “Australian Taxation Office” to steal the victim’s login credentials by promising a tax refund.
Debt Collector Spoofer Attempts Credential Theft
An AI-generated attack impersonates a debt collector and creates a sense of urgency to attempt to steal personal information.
LinkedIn Spoofer Uses News of Silicon Valley Bank Closure to Attempt Payment Fraud
Attacker impersonates the LinkedIn billing department and references the recent closure of SVB in this likely AI-generated attack.
Likely AI-Generated Attack Attempts Credential Phishing
An attacker uses a generative AI tool to spoof an insurance company, hoping to steal login credentials.
AI-Generated Credential Theft Attempted via Internal Company Impersonation
By leveraging urgency, an attacker sends an internal company communication in an attempt to steal credentials.
Kraken Exchange Spoofer Attempts to Steal Login Information
An attacker impersonates a popular cryptocurrency exchange and creates a fake website to steal login credentials.