Phishing

6 posts

/phantom-squatting-ai-domains/phantom-squatting-ai-domains.png
Phantom Squatting Lets Hackers Buy the Fake Websites Your AI Invents

July 1, 2026

Your AI assistant just sent you to a login page that did not exist a few weeks ago, and the person who registered it is already collecting the passwords people …

/winrar-rar-startup-folder-attack/winrar-rar-startup-folder-malware.png
WinRAR Can Still Drop Malware Into Your Startup Folder a Year After the Patch

June 30, 2026

You unzipped a file with WinRAR, the way you always do. Nothing on screen looked wrong. The next morning you logged in and malware was already running, and the …

/does-google-control-your-email/does-google-control-your-email.png
Does Google Control Your Email?

June 24, 2026

Anyone on the internet can send an email that looks like it came from your bank, your boss, or you, and the system that delivers it will not check whether that …

/microsoft-365-mailbox-rules-attack/featured-image.png
Microsoft 365 Mailbox Rules Are Being Weaponized

April 17, 2026

Microsoft 365 mailbox rules are being weaponized as a core technique behind $2.77 billion in annual Business Email Compromise losses, and attackers are creating …

/qr-codes-what-you-need-to-know/featured-image.png
QR Codes: What You Need to Know

April 6, 2026

Yesterday, I posted a QR code challenge on this Ethical Hacking page, and it has since been removed. A cipher, hidden inside a QR code, with three security …

/fake-bsod-clickfix-dcrat-malware/featured-image.jpg
Fake Blue Screen of Death Installs $5 RAT Malware via ClickFix Attack

January 6, 2026

$5 buys two months of complete access to someone’s computer. Keylogging, webcam, passwords, files. The malware is called DCRat. The delivery method: a …