Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

knowbe4

Phishing Campaign Exploits Google AppSheets to Target Facebook Accounts

May 19, 2026 By KnowBe4 Team In KnowBe4
Researchers at Guardo Labs are tracking a major phishing campaign that abused Google AppSheet as a relay to send phishing emails. The researchers identified more than 30,000 Facebook accounts that were compromised by this campaign. Since the emails are sent from Google’s legitimate infrastructure, they’re much more likely to land in users' inboxes.
Read Post
knowbe4

Warning: Phishing Attacks Are Abusing the Kuse AI App

May 19, 2026 By KnowBe4 Team In KnowBe4
Attackers are abusing the storage and sharing features of Kuse, a free AI app, to assist in phishing campaigns, according to researchers at Trend Micro. Kuse is a legitimate agentic AI platform used by employees to streamline workflows. Users can share files with coworkers, which generates a link hosted by Kuse’s domain. In this case, attackers are abusing the share feature to generate legitimate-looking phishing links.
Read Post

Sophos Email: Enterprise-grade, AI-powered email protection

May 11, 2026 By Sophos In Sophos
Sophos Email delivers enterprise-grade protection that keeps malicious messages out of user inboxes, elevates your defense against AI-powered adversaries, trains your employees to stay vigilant, and simplifies day-to-day security operations - all at a competitive price point.
View Video
New RMM Abuse Exposes Remote Access Blind Spots in U.S. and EU Companies

New RMM Abuse Exposes Remote Access Blind Spots in U.S. and EU Companies

May 6, 2026 By SecuritySenses In SecuritySenses
Can your SOC prove when a trusted remote access tool becomes unauthorized access? That is the challenge behind the latest RMM abuse targeting companies in the U.S. and Europe. Attackers are using phishing pages to deliver legitimate remote access software, making malicious activity look like routine IT work. For CISOs, the risk is clear: if the team cannot see how the tool entered the environment, what executed, and where the connection went next, containment slows down and business exposure grows.
Read Post
luxsci

LuxSci Launches Enterprise-Grade HIPAA-Compliant Email Security for Mid-Sized Healthcare Organizations

May 5, 2026 By LuxSci
New right-sized offering brings advanced encryption, easy API integration, and HITRUST-certified compliance to the most underserved segment in healthcare email - with pricing starting at $99/month.
Read Post
knowbe4

Why Your Email Security Needs a Global Human Network to Close the Detection Gap

Apr 30, 2026 By Haylea Reiner, MBA In KnowBe4
The biggest challenge in email security today isn’t just detecting a threat; it’s the speed of response across a global landscape. As we head into the second half of 2026, the stakes with speed have gotten higher. According to SQ Magazine, AI-generated phishing attempts are 68% harder to detect than they were just a year ago, and the average cost of an AI-powered breach has climbed to $5.72 million. Cybercriminals are using the same AI you are to bypass your filters.
Read Post
memcyco

How to Detect Phishing Before It Happens: Moving Beyond User Awareness

Apr 24, 2026 By Ezra M. In Memcyco
By the time a phishing email lands in an inbox, the attacker’s infrastructure has already been live for hours. That’s not a hypothetical. Zimperium’s 2024 research found that 60% of newly created phishing domains receive a TLS certificate within the first two hours of registration. The site is credentialed, hosted, and ready before most security teams have any signal it exists.
Read Post
knowbe4

Alert: WhatsApp Phishing Campaign Delivers Malware

Apr 21, 2026 By KnowBe4 Team In KnowBe4
A new phishing campaign is using WhatsApp messages to deliver malware, according to researchers at Microsoft. The attackers are attempting to trick users into installing malicious Visual Basic Script (VBS) files. “The campaign relies on a combination of social engineering and living-off-the-land techniques,” Microsoft says.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.