Credential Stuffers Compromise More Than 100K Accounts

Credential stuffing is a cyber-attack in which stolen user credentials and corresponding passwords are used with brute force to make automated login requests. The stolen user credentials are typically from data breaches that could have happened recently, but also may have occurred long ago. These types of attacks are particularly effective when the same username and password combination is used across multiple websites or services. New York’s attorney general announced that an investigation into credential stuffing had uncovered 1.1 million compromised customer accounts linked to 17 well-known companies. READ FULL STORY

There Is Plenty Of Phishing On Online Apps--Don't Get Hooked

A recent documentary aired on subscription streaming service, Netflix, that highlighted how difficult it is to detect when someone is trying to take advantage of human nature and kindness. You may have seen it. It has been discussed on various media and it may be difficult to watch. But it is yet another example of how criminals use social engineering and trust to get what they want. One interviewee tells the story of how she met a guy that matched and swept her off her feet and swept her bank account clean. READ FULL STORY

Avoiding Insurance Fraud And Fraudsters

Insurance fraud is a problem everywhere and it makes things more expensive for those of us playing by the rules. With this fraud in particular, whether it’s for our health, car, or home, fraudsters are scamming like never before. Suspecting a sketchy seller and policy in an open marketplace can help prevent a potential nightmare. Knowing tell-tale signs of insurance fraud when we see it is smart shopping, and the information below will help. READ FULL STORY

Is It Time to Freeze Your Credit? What to Know

With an abundance of scams and data breaches exposing our sensitive information, it doesn’t take much for a criminal to cobble together an identity profile and ruin a victim’s finances. That’s why more people every day are placing a credit freeze on their financial accounts. The question now is, should you? According to a study, identity fraud cost Americans $43 billion last year. An empty bank account, unexpected credit card purchases, and bills for accounts you never opened are signs something is wrong, so don’t wait to act. READ FULL STORY

Cybersecurity Threats That Rocked 2025

Think cyber threats fade with the old calendar? Think again. In 2025, attackers doubled down on familiar tricks and sharpened them into something far more dangerous. Infostealer malware exposed billions of stolen credentials, phishing emails looked more convincing than ever, and poisoned search results pushed malware to the top of Google. Meanwhile, smishing texts, fake crash alerts, and mobile exploits targeted everyday users. The lesson from 2025 is clear: the scams may evolve, but the targets remain the same. Staying safe now requires constant vigilance, updated devices, and a healthy skepticism of anything that demands a quick click READ FULL STORY

Beware of Push Bombing —The MFA Scam Designed to Wear You Down

Cybercriminals are getting smarter about bypassing multi-factor authentication (MFA), and one of their favorite tricks is something called push bombing. It’s a simple tactic, but extremely effective when victims are caught off guard or overwhelmed. It's designed to wear us down. And most of us have probably been overwhelmed by notifications at some point, which is why this type of attack has proven successful time and again for attackers. READ FULL STORY

Your Secure Wi-Fi Might Actually Be a Snitch

If you assume a password-protected Wi-Fi network keeps your internet activity private, you shouldn’t. Security researchers have revealed a new Wi-Fi attack called AirSnitch that could allow hackers on the same network to secretly intercept your internet traffic. The technique doesn’t break Wi-Fi encryption like previous similar attacks. Instead, it tricks the network into sending your data through the attacker’s device, potentially exposing logins, browsing activity, and more on shared networks like airports, hotels, and cafés. READ FULL STORY

I Didn't Try To Sign Into That Account. So Who Did?

We’ve all gotten them. A text with a random code we are supposed to enter somewhere to log in to something. And it’s likely you’ve received one or two that just showed up and you don’t know why. Firstly, and importantly, don't ignore them! When you receive an unsolicited verification code, it's like a huge warning sign screaming, "Someone's trying to get into your account!" But don’t panic. We’ve got you covered. Here’s a guide to help you navigate those random texts with verification codes. READ FULL STORY

Scammers Steal Chips and Cash From Destroyed Debit Cards

Debit card use has always come with a certain amount of risk. However, a troubling new twist in debit-card fraud is turning the chip we’ve all come to trust for security into a weapon. In this latest attack, scammers call victims pretending to be a representative from a financial institution and claim there’s a problem with the debit card. But, fortunately, there’s a “fix” that that the scammers will very helpfully assist you in completing. READ FULL STORY

Text Scam Frenzy Explodes Over 300 Percent as Scammers Target Financial Institutions

A recent cyber threat snapshot reveals phishing texts posing as various financial institutions have spiked over 340 %, dominating these types of scams in late 2025. These fraudulent messages use fake alerts and deceptive links to steal credentials. Experts warn that as phishing evolves, attackers are playing psychological tricks, not using sophisticated technologies. Learn how scammers are tricking mobile users and simple steps you can take to stay safe in the cyber wild. READ FULL STORY

ClickFix Attacks Help You Hack Your Own PC

PC users beware—ClickFix attacks are here. Global cybersecurity company ESET’s did some research on the topic. Its research finds ClickFix incidents are now a close second to phishing—and that’s saying something. They also found these two-faced attacks multiplied a crushing 500%+ during that same year. And they are pretty crafty in their trickery too. It’s been an invaluable hacking tool for decades since phishing tactics keep reinventing themself as technology marches on. These start with phishing, of course, and these attacks are getting more sophisticated by the day, and with help from AI. READ FULL STORY

Watch Out For Scammers Pretending To Be FDIC Or OIG Officials

Scammers are increasingly pretending to be officials from the Federal Deposit Insurance Corporation (FDIC) or the FDIC Office of Inspector General (OIG). Reaching you by phone, email, text, or even via social media and demanding money or personal information. According to an alert from the FDIC OIG, these impersonation scams often use official-sounding names, real official-looking seals or logos, and urgent or threatening language to seem legitimate. READ FULL STORY