Attack Library
Cybercriminals Pose as Capital One Using a Spoofed Email in Credential Phishing Attack
A threat actor sends a fraudulent account alert linked to a phishing website to deceive recipients into revealing confidential information.
Phishing Attack Impersonates myGov Using Spoofed Email to Steal Sensitive Information
Attackers exploit the urgency of government notifications to deceive recipients into providing personal details through a fake myGov email.
Apple Pay Impersonator Spoofs Legitimate Domain to Steal Login Credentials in Likely AI-Generated Attack
Attackers exploit the urgency of unauthorized activity alerts to deceive recipients into providing sensitive information.
American Express Impersonator Uses URL Shortener and Spoofed Email Address in Phishing Attack
Attackers exploit the urgency of credit issues to deceive recipients into providing personal details through a spoofed American Express email.
Attacker Impersonates Chicago Title Insurance Company Using Compromised Email to Steal Sensitive Information
Threat actor sends fraudulent file-sharing notification linked to cleverly disguised phishing website to deceive recipients into revealing confidential information.
Amazon Impersonator Uses Potentially Compromised Email to Steal Login Credentials in Likely AI-Generated Phishing Attack
Attackers use a spoofed email address and exploit the urgency of security issues with an Amazon account to deceive the recipient into providing sensitive information.
PayPal Impersonator Sends Unauthorized Transaction Alert Using Fake Outlook Email in Likely AI-Generated Vishing Attack
A threat actor exploits fears of identity theft to manipulate the recipient into contacting fraudulent support numbers and initiate the next phase of the attack.
Threat Actor Uses Spoofed Email Address and Malicious QR Code to Attempt Credential Theft
An attacker impersonates an internal HR department to manipulate employees into scanning a malicious QR code under the guise of viewing benefits information.
Phishing Attack Impersonates Dashlane Using Lookalike Domain to Steal Sensitive Information
Attackers exploit the urgency of account verification to deceive recipients into disclosing personal data through a spoofed Dashlane email.
Threat Actors Impersonate IRS and ID.me in Sophisticated Phishing Attempt
Using a spoofed email and a convincing phishing site, attackers attempt to steal sensitive information under the guise of identity verification.
DHL Impersonator Uses Spoofed Email to Trick Recipients into Paying Fraudulent Fees
Attackers exploit the urgency of parcel delivery issues to steal payment details via a spoofed DHL email.
Phisher Impersonates Roundcube and Uses Deceptive Gmail Address to Attempt Credential Theft
An attacker creates a sense of urgency by threatening email discontinuation and prompts the recipient to enter account information into a phishing page mimicking a legitimate login portal.
Phishing Attack Impersonates Wells Fargo Using Newly-Registered Domain to Steal Sensitive Information
Attackers use a malicious email and fraudulent website to exploit the urgency of account security and deceive recipients.
Venmo Impersonator Uses Free Russian Webmail Account to Initiate Fraudulent Fund Transfer
Attackers exploit the trust in Venmo's brand to deceive recipients into refunding non-existent payments.
Threat Actor Uses Impersonation and Spoofing to Deliver Malicious Payload in Likely AI-Generated Attack
Using a spoofed email address, an attacker poses as a known brand and attempts to convince the target to open a malicious attachment.
Threat Actor Impersonates Spotify and Attempts to Steal Payment Details in Likely AI-Generated Phishing Attack
Attackers use a spoofed email to exploit the trust of Spotify users and direct them to a phishing site under the guise of updating payment information.
PayPal Impersonator Sends Fraudulent Account Notification Using Spoofed Email Address to Steal Account Credentials
An attacker poses as PayPal and attempts to exploit the fear of account compromise to compel targets to log into a fake website.
Threat Actor Impersonates Bankrupt Cryptocurrency Exchange FTX Trading Ltd. in Likely AI-Generated Phishing Attack
Attackers exploit the demise of FTX Trading Ltd. to deceive recipients into divulging sensitive information through a fraudulent withdrawal scheme.
Phisher Expertly Impersonates DHL Branding in Likely AI-Generated Attack
Using a fraudulent notification regarding a delivery issue, an attacker hopes to compel a target to divulge sensitive information.
Phishing Attack Impersonates Bendigo and Adelaide Bank to Harvest Personal Information
Attackers exploit a compromised email account to deceive recipients with an urgent account verification request.