Saturday Security: New Phishing Scam Feels Like Real Customer Service

 

Scammers have found a sneaky new way to steal your information — and it's scary convincing. Researchers discovered attackers are abusing a platform called LiveChat to impersonate Amazon and PayPal agents in real-time chat conversations. Here's how it works: you get an email about a refund or pending order, click a link, and suddenly you're in what looks like a live customer service chat — but it's a scammer walking you through handing over your password, credit card number, and even your two-factor authentication (MFA) code. What makes this dangerous is the personal touch. A real human typing back to you feels trustworthy. It lowers your guard in a way a fake website alone never could. The golden rule: No legitimate company will ever ask for your credit card number, MFA code, or billing details through a chat window. If something feels off — even if it feels friendly — stop and contact the company directly through their official website. Stay sharp. Share this with someone who needs to hear it. 👇 https://www.darkreading.com/threat-intelligence/attackers-livechat-phish-credit-card-personal-data 👍 Like • 🔔 Subscribe • 💬 Comment: Have you been targeted by a scam like this?

Saturday Security: 82% of Companies Impacted with Security Debt and AI Is Making it Worse

 

A new report from Veracode highlights a growing cybersecurity challenge: security debt. According to the State of Software Security Report 2026, 82% of organizations now carry security debt, meaning unresolved vulnerabilities are piling up faster than security teams can fix them. Even more concerning, 60% of that debt is considered critical, potentially leading to severe damage if exploited. Part of the problem is speed. Modern software development—especially with AI-assisted coding—is moving faster than remediation teams can keep up. The report also found: • 36% increase in high-risk vulnerabilities • Two-thirds of the most dangerous flaws come from third-party and open-source software The key takeaway: security teams can’t fix everything. The future of cybersecurity is prioritizing the vulnerabilities that pose real-world risk. For additional insights, Wade Baker from the Cyentia Institute is sharing deeper analysis on LinkedIn. This is Saturday Security with Peter Silva. Stay safe out there. https://www.wisdominterface.com/wp-content/uploads/2026/03/2026-State-of-Software-Security-Report.pdf

Global Conflict Enters Cyberspace: Cyber Front in U.S.–Israel–Iran Escalation

 

The United States and Israel have launched major combat operations targeting Iran’s ruling regime in Tehran, escalating tensions over Iran’s nuclear program. Iran responded with ballistic missile attacks — but the conflict doesn’t stop there. Cybersecurity experts warn that pro-Tehran hackers may already be mobilizing. In today’s world, every global conflict includes a cyber battlefield — targeting infrastructure, financial systems, media, and government networks. What does this mean for organizations worldwide? Stay alert. Patch systems. Prepare your incident response teams. This is your Saturday Security Story with Peter. https://www.databreachtoday.com/us-israel-launch-major-combat-operations-against-iran-a-30889

Operation DoppelBrand - The Phishing Campaign that Cloned 150 Fake Bank Domains

 

This week, cybersecurity researchers uncovered a large-scale phishing campaign targeting major financial brands — including Wells Fargo and USAA.

Dubbed Operation DoppelBrand by SOCRadar, the campaign is tied to a threat actor known as GS7. Attackers created more than 150 lookalike domains that cloned banking login pages nearly pixel-for-pixel.

Victims who clicked phishing emails had their credentials instantly forwarded to attacker-controlled Telegram bots.

Even more concerning? The group allegedly used legitimate remote management tools like LogMeIn Resolve to maintain access — and potentially resell it.

Phishing isn’t sloppy anymore. It’s automated. Scalable. Industrialized.

I’m Peter — bringing you Saturday Security Stories.

Like & Share.

https://socradar.io/blog/operation-doppelbrand-fortune-500-campaign/

Saturday Security: The Hidden Cyber War Behind the 2026 Winter Olympics

 

As the Winter Olympics open in Milan, another competition is already underway—cybersecurity. Italian officials have blocked hacking attempts on embassies and Olympic venues, while experts warn of AI-driven phishing, deepfake impersonations, and disinformation campaigns designed to disrupt the Games before the Opening Ceremony even begins. Why the focus? Because with billions of viewers and global attention, the Olympics are one of the most valuable targets on earth. Even low-cost attacks like DDoS disruptions—or coordinated propaganda—can create worldwide chaos in seconds. We’ve seen it before. From Russia-linked attacks in past Olympics to fresh attempts tied to geopolitical tensions today, the Games are no longer just athletic arenas… they’re digital battlegrounds. The lesson? When the world gathers, attackers watch too. Stay curious. Stay prepared. https://cybermagazine.com/news/inside-russian-cyber-attacks-at-the-2026-winter-olympics

Saturday Security: Data Breaches Hit a Record High and We’re Not Being Told Why

 

Data breaches hit an all-time high in 2025 — but fewer people were notified. Why? Because attackers didn’t stop. They changed tactics. According to the Identity Theft Resource Center’s 20th Annual Report, U.S. organizations reported 3,322 data compromises, a 79% increase in five years. Instead of massive single breaches, attackers spread out — hitting more companies, more quietly. Even worse, 70% of breach notices didn’t explain how the breach happened, leaving people unable to assess risk or take action. This week’s Saturday Security Story breaks down what’s really happening — and why resilience matters more than headlines. Stay curious. Stay prepared. https://www.idtheftcenter.org/wp-content/uploads/2026/01/2025-ITRC-Annual-Data-Breach-Report.pdf https://www.databreachtoday.com/data-breaches-in-america-hit-all-time-record-high-in-2025-a-30624

Saturday Security: The New Phishing Isn’t Email — It’s Phone Calls

 

This week, Okta warned customers about a surge in voice phishing (vishing) attacks where criminals impersonate IT support in real time. These attackers already know which MFA app you use, your helpdesk number, and exactly when to pressure you into approving a login. Groups like ShinyHunters are using real-time phishing toolkits that sync fake login pages with live phone calls. No malware. No exploits. Just persuasion. If someone calls asking you to approve an MFA request you didn’t initiate — hang up. Because modern breaches don’t break systems - They convince people. https://www.databreachtoday.com/voice-phishing-okta-customers-shinyhunters-claims-credit-a-30590