Windows systems across Latin America have been targeted with malicious payloads delivered through a sophisticated phishing attack campaign, The Hacker News reports.

The industry needs to focus on the root cause of the vast majority breaches: human error.

Hackers are using a sophisticated social engineering ruse targeting IT help desk staff to gain initial access to healthcare organizations.

BleepingComputer reports that phishing attacks with an updated JSOutProx remote access trojan variant have been deployed against financial entities in South and Southeast Asia, the Middle East, and Africa.

Organizations in the oil and gas industry have been targeted with a phishing campaign that involved the deployment of a new Rhadamanthys information-stealing malware variant, The Hacker News reports.

StateScoop reports that New York City has limited access to its payroll system for more than a week now following the discovery of an SMS phishing, or smishing, campaign, which sought to facilitate personal data theft.

Tactics include “tricking” the AI into believing it is in “development mode” or roleplaying.