Insights · Tag

#phishing

2 posts tagged phishing.

DFIR 14 Sep 2024

One letter off: how a look-alike domain and a stolen signature ran a 30-day invoice fraud

A new analyst, a trusted client, and an email that arrived at 5:45 on a Monday morning. The story of a business email compromise that turned on a single swapped character — and the forensic trail that survived a year of silence and a lawyer's denial.

By Cyberange DFIR Team

Threat intelligence 17 Apr 2026

Browser-based initial access in 2026

The fastest-growing initial-access surface in the engagement data is the browser session, not the credential. Reverse-proxy phishing kits, OAuth consent abuse, extension supply-chain hijacks, and infostealer-fed cookie marketplaces — what changed, why MFA and password rotation no longer cover the dominant case, and which controls actually move the curve.

By Cyberange Threat Intel