Bad CAPTCHA in the wild tricks Mac users into installing malware through Terminal

Hackers have a new tool called ClickFix. The new attack vector combines fake human-verification prompts with malware, trying to trick users into running Terminal commands that bypass macOS security.
Hindustan Times

Proof of life: How CAPTCHA changed the internet

Yahoo! — and to a lesser extent Hotmail — were the kings of the internet, in the late-1990s. Their free webmail services gave anyone with a modem a digital identity. But this openness had a fatal flaw ...

ThreatDown Uncovers First Cyber Attack Abusing Deno JavaScript Runtime for Fileless Malware Delivery

ThreatDown, the corporate business unit of Malwarebytes, today published research documenting what researchers believe to be ...
Microsoft

Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale

Tycoon2FA has become a leading phishing-as-a-service (PhaaS) platforms, enabling campaigns that reach over 500,000 organizations monthly, prompting Microsoft’s Digital Crimes Unit (DCU) to work with ...
Insurance Business America

Insider attacks now overtake employee errors in Australia

According to its State of Human Risk Report, 41% of Australian organisations reported a rise in malicious insider incidents ...
HealthcareInfoSecurity

Breach Roundup: Russian State Actors Target Signal, WhatsApp

This week, Russian hackers targeted Signal and WhatsApp users, permit-fee phishing hit U.S. applicants, ClickFix on WordPress ...

Mimecast Study: 42% of Organizations Report Rise in Malicious Insider Threats Over Past Year

Mimecast, a global leader in managing human risk, today released its 9th annual State of Human Risk Report, revealing that 42% of organizations reported an increase in malicious insider incidents over ...
Enterprise Times

News from the week beginning February 23rd 2026

News from the week beginning 23rd February included items from @Workday, @ThomsonReuters, @Sirion, @Rootstock, @Nintex, ...
Cyber Daily

NZ firms say that staff AI misuse is a key cyber risk

AI is proving to be a major concern for businesses in New Zealand, with companies reporting that staff misuse of the ...
Cyber Daily

Kinetic IT appoints new CEO to drive national growth

Kinetic IT has announced the appointment of its new chief executive officer, Dean Langenbach. Coming as Kinetic IT continues to progress as a sovereign technology company that has worked alongside ...
The Journal Online

SLED warns “HereCity” SC news websites hacked

The State Law Enforcement Division (SLED) is warning that a number of news websites across the State using the “HereCity” platform have been hacked and contain a malicious JavaScript. HereCity is a ...
IT-Online

SA organisations see a rise in malicious insider threats

Mimecast’s ninth annual State of Human Risk Report reveals that 46% of SA organisations reported an increase in malicious insider incidents over the past year – matching the 46% of local organisations ...