- HX Weekly by Hexagon Center
- Archive
- Page 1
Archive
AI Tools Used In Phishing Attacks Globally
But what’s new? Recently, we have extensively discussed how attackers are increasingly employing agentic AI and generative AI to conduct attacks against us. This week's cybersecurity news is dominated by active exploitation of major vulnerabilities. U.S. temporarily revived two major cybersecurity laws, and the U.K. proposed a new resilience bill, while Microsoft is rolling out anti-screenshot features for Teams Premium.
Malvertising targets everyone. Yes, including you.
With malvertising playing a key role in the initial breach, malicious search engine ads are impersonating software installers—similar to the Microsoft Teams attack mentioned in today’s edition—to drop a backdoor into corporate machines. This underscores the trend of threat actors using trusted applications and platforms to gain an early foothold. In a significant parallel development, Google warned about a dramatic evolution in malware, identifying new strains that use Generative AI models to dynamically rewrite and mutate their code hourly to evade detection. These dual threats—using deceptive advertising for initial access and then deploying AI-enhanced malware—signal a rapidly adapting environment where both human vigilance and advanced defensive tools are increasingly necessary.
LastPass Last Phish?
If you believe that phishing scams had diminished or subsided, this week’s cybersecurity landscape was characterized by the active exploitation of critical vulnerabilities and, notably, phishing scams. A sophisticated phishing scam targeted LastPass users by sending them fraudulent “death claims” emails, with the intention of obtaining Master Passwords. This financially motivated campaign was associated with the CryptoChameleon group, underscoring the persistent threat posed by social engineering alongside nation-state activities that exploit flaws in Windows and target critical infrastructure.
They are everywhere. Don’t just think cybersecurity ...
We’re still keeping a close eye on those widespread vulnerabilities and how cybercrime is constantly changing, especially with AI playing a bigger role. It’s getting more and more common for AI to be used in social engineering attacks which shows how cybercriminals are getting smarter and more creative.
Are you looking for a job? We’re hiring
This week in cybersecurity, ransomware continues to be a dominant threat with new variants and social engineering tactics targeting industries like healthcare, while concerns persist over supply chain vulnerabilities and the dual use of AI by both defenders and attackers; meanwhile, governments are prioritizing critical infrastructure security, but job seekers must remain vigilant against rising employment scams that often feature unsolicited offers, poor communication, premature requests for financial data, demands to purchase equipment, and interview processes solely through chat, necessitating thorough verification of companies and recruiters to avoid falling victim.
Who is this person that knows me so well?
Several reports revealed that malicious actors are increasingly using AI-driven tools to automate phishing campaigns, generate convincing deepfake audio and video, and identify vulnerabilities in systems faster than ever before. Another alarming trend covered in the news involves AI-powered malware. AI is even being employed to scan networks for exploitable weaknesses more efficiently than human hackers or traditional automated tools. The consensus in this week’s coverage is clear: as attackers get smarter with AI, our defenses must evolve just as quickly, if not faster.
Spread the word about password
A nationwide retailer confirmed a cyberattack exposing customer data, while ransomware attacks disrupted healthcare services. CISA warned of phishing campaigns targeting enterprise credentials. Multi-factor authentication adds an extra layer of defense beyond just a password —such as a code from an authenticator app, biometric verification, or a hardware token—making unauthorized access far less likely. MFA is currently the most effective way to prevent account compromise in the face of modern cyberattacks.
Do you need help phishing?
Security experts warn that attackers are using increasingly sophisticated emails that mimic trusted companies, tricking users into clicking malicious links or sharing sensitive information. Several reported incidents involved fake account verification requests and urgent password reset prompts, which led to compromised accounts.
Do you need help phishing?
Surge in ransomware attacks targeting healthcare providers, resulting in temporary disruptions to patient care and exposing sensitive data. Attackers are increasingly using AI-driven phishing emails to exploit human error and outdated systems. Always use essential tools and practices: enable multi-factor authentication (MFA) across all accounts, maintain updated antivirus and anti-malware software, regularly back up data both locally and in the cloud, and use a trusted virtual private network (VPN) when accessing public Wi-Fi.
Why are cyber attacks on the rise before the year ends
People are starting to shop online more, sharing personal and financial information, and rushing to meet end-of-year deadlines, which makes them less cautious. Hackers take advantage of this by sending fake holiday deals, phishing emails, and scam shipping notices, while many companies have fewer IT staff on duty to monitor threats. The mix of higher online activity, seasonal scams, and reduced security makes this time of year a prime target for cybercriminals.
AI, AI, Everywhere, And ... what do we do now?
AI-driven cybersecurity developments include the rise of AI-powered attacks and defensive AI tools. Governments are drafting regulations to govern AI’s role in cybersecurity, emphasizing ethical usage and data protection. Take caution. Stay safe.