LIVE FEED

HIGHPhishingTycoon2FA Phishing-as-a-Service Platform Resurfaces Following Law Enforcement Disruption12h LOWFraudNeuro-Symbolic AI Technique Enhances Fraud Detection Resilience21h MEDIUMFraudAnar Rustamov Charged in $90 Million Medicare Fraud Scheme21h HIGHPhishingMandiant Reports Surge in Voice-Based Phishing Attacks21h HIGHPhishingAI-Powered Phishing Campaign Compromises Hundreds of Organizations21h HIGHPhishingGoogle Report Identifies Voice Phishing as Primary Vector for Cloud Environment Compromise21h HIGHPhishingPhishing Campaign Deploys Infostealers via Fake Copyright Infringement Notices21h HIGHPhishingTycoon 2FA Phishing-as-a-Service Platform Fully Operational Post-Takedown1d MEDIUMFraudWeak Internal Financial Controls Identified as Primary Driver for Corporate Fraud1d MEDIUMFraudFBI Issues Warning on Cybercriminal Exploitation of Residential Proxy Networks1d HIGHPhishingRussian Intelligence Actors Impersonate Signal Support for Phishing Campaigns1d HIGHPhishingMicrosoft Azure Monitor Exploited for Sophisticated Phishing Campaigns2d HIGHPhishingTycoon2FA Phishing-as-a-Service Platform Resurfaces Following Law Enforcement Disruption12h LOWFraudNeuro-Symbolic AI Technique Enhances Fraud Detection Resilience21h MEDIUMFraudAnar Rustamov Charged in $90 Million Medicare Fraud Scheme21h HIGHPhishingMandiant Reports Surge in Voice-Based Phishing Attacks21h HIGHPhishingAI-Powered Phishing Campaign Compromises Hundreds of Organizations21h HIGHPhishingGoogle Report Identifies Voice Phishing as Primary Vector for Cloud Environment Compromise21h HIGHPhishingPhishing Campaign Deploys Infostealers via Fake Copyright Infringement Notices21h HIGHPhishingTycoon 2FA Phishing-as-a-Service Platform Fully Operational Post-Takedown1d MEDIUMFraudWeak Internal Financial Controls Identified as Primary Driver for Corporate Fraud1d MEDIUMFraudFBI Issues Warning on Cybercriminal Exploitation of Residential Proxy Networks1d HIGHPhishingRussian Intelligence Actors Impersonate Signal Support for Phishing Campaigns1d HIGHPhishingMicrosoft Azure Monitor Exploited for Sophisticated Phishing Campaigns2d

Citizen Fraud Intelligence

Citizen Fraud Alerts

50 latest alerts · Public protection feed

1 Critical Alert Active— Stay vigilant. Verify all communications before acting.

Top AlertHIGH

CIT-00412

PhishingGlobal

Tycoon2FA Phishing-as-a-Service Platform Resurfaces Following Law Enforcement Disruption

The Tycoon2FA phishing-as-a-service platform, which was targeted by Europol and international partners on March 4, has successfully restored its operations. The service provides threat actors with automated tools to perform adversary-in-the-middle (AitM) attacks, allowing them to intercept session cookies and bypass multi-factor authentication. Despite the recent law enforcement intervention, the platform has returned to its previous activity levels, indicating a robust and decentralized infrastructure.

Financial ServicesTechnology12h ago

Read Alert

HIGH

Phishing · Global

High Priority Alerts

Neuro-Symbolic AI Technique Enhances Fraud Detection Resilience

Researchers have developed a neuro-symbolic AI model that introduces the FIDI Z-Score metric to monitor fraud detection systems. Unlike traditional methods that rely on labeled data to measure performance degradation, this technique identifies shifts in fraud patterns autonomously. By detecting these shifts before F1 scores decline, the model provides a proactive warning system for security teams.

Anar Rustamov Charged in $90 Million Medicare Fraud Scheme

Anar Rustamov has been charged with 14 counts of healthcare fraud and money laundering related to a $90 million scheme targeting the U.S. Medicare program. Authorities allege that the suspect orchestrated a complex operation to defraud the healthcare system. The suspect is currently absconding, and law enforcement agencies are actively pursuing leads to locate him.

Mandiant Reports Surge in Voice-Based Phishing Attacks

Mandiant observed multiple attack campaigns throughout the previous year that utilized voice-based phishing as the initial access vector. Threat actors are increasingly leveraging voice communication to manipulate employees into divulging credentials or facilitating unauthorized access. This tactic represents a strategic pivot away from traditional email-based phishing, which is often mitigated by modern security gateways.

AI-Powered Phishing Campaign Compromises Hundreds of Organizations

Security researchers at Huntress have identified a widespread phishing campaign utilizing AI to enhance the efficacy of its lures. The campaign has targeted users of the Railway platform, leading to the compromise of hundreds of organizations. It is believed that the current scope of the breach is significantly larger than the initial findings suggest.

Technology

All Fraud Alerts

1–5 of 45

HIGHPhishing21h ago

Google Report Identifies Voice Phishing as Primary Vector for Cloud Environment Compromise

Google's incident response teams observed a significant increase in voice phishing attacks targeting corporate IT environments. Attackers are increasingly using social engineering to manipulate employees into revealing credentials or approving MFA requests. This tactic has proven particularly effective for gaining unauthorized access to cloud-based infrastructure, where identity is the primary security perimeter.

HIGHPhishing21h ago

Phishing Campaign Deploys Infostealers via Fake Copyright Infringement Notices

Threat actors are distributing phishing emails that claim to be official copyright infringement notices. These emails contain malicious payloads designed to install infostealer malware on victim systems. The campaign employs various evasion tactics to circumvent detection by email security gateways and endpoint protection solutions. The attack specifically targets high-value sectors including healthcare, government, hospitality, and education.

HIGHPhishing1d ago

Tycoon 2FA Phishing-as-a-Service Platform Fully Operational Post-Takedown

Tycoon 2FA, a prominent phishing-as-a-service (PaaS) platform, has resumed full operations after a brief period of disruption by law enforcement. The service provides attackers with tools to intercept session cookies and bypass multi-factor authentication (MFA) in real-time. Despite the intervention, the platform's infrastructure remains resilient, and attack volumes have returned to their previous high levels.

MEDIUMFraud1d ago

Weak Internal Financial Controls Identified as Primary Driver for Corporate Fraud

Experts have identified a trend where minor lapses in internal financial control mechanisms are being leveraged by malicious actors to orchestrate major financial irregularities. These incidents often begin as small, ignored compliance failures that gradually escalate into significant financial crises. The report emphasizes that the failure to maintain robust oversight is a critical vulnerability in modern corporate environments.

MEDIUMFraud1d ago

FBI Issues Warning on Cybercriminal Exploitation of Residential Proxy Networks

Cybercriminals are increasingly leveraging residential proxy services to mask their digital footprints. By infecting home devices with malware or bundling proxy software into seemingly benign free applications, attackers turn residential internet connections into exit nodes for illicit traffic. This technique allows malicious actors to bypass security filters that typically flag traffic originating from known data centers or VPN providers.

Page 1 of 9

…

5 per page