THREAT FEED

Widespread phishing campaign using fake Gmail security alerts. Emails claim suspicious login detected and direct users to a near-perfect Google sign-in replica. Campaign has compromised over 100,000 accounts in the past week.

Sophisticated phishing campaign exploiting Microsoft 365 OAuth flows. Victims receive emails with Review Document links that redirect through legitimate Microsoft login to a malicious OAuth consent page, granting attackers persistent access to email, files, and Teams.