Malware developers adopt Node.js; US disinformation warriors disbanded; Gig worker accounts for sale; and more ...

Cybercriminals have developed a new phishing technique that leverages Google's own infrastructure to send deceptive emails.

Coinbase's CISO addresses the rise of social engineering scams and emphasizes the need for industrywide action to protect ...

Fraudsters have impersonated Google by 'spoofing' a Google email address and support page in a convincing and widespread scam ...

A developer reported the scam after noticing a slight discrepancy in the email address. The scam passed Google’s own DKIM ...

A Qantas-spoofing email campaign claiming to have various rewards bypassed multiple secure email gateways (SEGs) to deliver credential phishing pages that targeted credit cards. This campaign ...

A new phishing email attack has surfaced, and these messages are somehow authenticated by Google. But how is that possible?

In a rather clever attack, hackers leveraged a weakness that allowed them to send a fake email that seemed delivered from Google's systems, passing all verifications but pointing to a fraudulent page ...

Security experts have issued a fresh warning to all PayPal account holders, urging them to be vigilant. The widely-used ...

• Verify all communications directly with PayPal: Never click links in emails or texts claiming to be from PayPal. Instead, open a new browser window and log in directly at Pay, Send and Save Money ...

Until Google rolls out a fix, you'll have to be on the lookout for this particularly convincing phishing scam.