Category: Email Security
How Booking.com Impersonation Attacks Are Putting Hotels and Casinos at Risk of Credential Theft and Financial Fraud
Introduction Hospitality phishing campaigns targeting hotels, casinos, and travel-related operations Hotels, casinos, resorts, and travel operations rely on a constant flow of email messages to manage reservations, guest requests, payment questions, and partner communications. That volume creates the perfect cover...
HostMimic: Old Technique Revived – Non-Canonical IP URL Obfuscation
HostMimic: Old Technique Revived – Non-Canonical IP URL Obfuscation Trustifi observed multiple quarantined phishing emails using a very old but still effective URL evasion technique: Non-Canonical IPv4 URL Obfuscation. We’re calling this observed phishing pattern HostMimic. The emails looked like...
Fake Claude Code Packages Are Stealing Developer Credentials, and Putting Enterprise Email Environments at Risk
Introduction Fake packages that imitate popular developer tools are becoming a serious risk, and Claude Code-related names are now part of that trend. Attackers use typosquatted package names, which are names designed to look almost correct, to trick developers into...
QR Code Phishing Is Surging in Microsoft 365: How Businesses Can Stop the Next Wave of Credential Theft
Introduction QR code phishing’s growing role in Microsoft 365 email attacks QR code phishing, often called quishing, has moved from a niche tactic to a mainstream email threat. Instead of asking a user to click a suspicious link, attackers place...
Why Business Email Compromise in Healthcare Is Now a Patient Safety Issue
Introduction The growing connection between cyber threats and patient safety in healthcare Cybersecurity in healthcare is no longer only an IT concern. When email systems are compromised, clinicians, administrators, billing teams, and vendors can all lose access to critical information,...