SpiderLabs Blog

Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks

April 10, 2025 Bernard Bautista and Kevin Adriano

Ever thought an image file could be part of a cyber threat? The Trustwave SpiderLabs Email Security ...

Tycoon2FA New Evasion Technique for 2025

April 10, 2025 Rodel Mendrez

The Tycoon 2FA phishing kit has adopted several new evasion techniques aimed at slipping past ...

The Rise of Email Marketing Platforms for Business Email Compromise Attacks

February 18, 2025 Maria Katrina Udquin

In a statistical report published in September 2024 by the Federal Bureau of Investigation (FBI), ...

Email Bombing: Why You Need to be Concerned

December 18, 2024 Phil Hay

Over the last few months, the topic of email bombing has been brought to our attention multiple ...

Rockstar 2FA Phishing-as-a-Service (PaaS): Noteworthy Email Campaigns

November 27, 2024 Diana Solomon and John Kevin Adriano

Welcome to the second part of our investigation into the Rockstar kit, please check out part one ...

Rockstar 2FA: A Driving Force in Phishing-as-a-Service (PaaS)

November 26, 2024 Diana Solomon and John Kevin Adriano

Trustwave SpiderLabs has been actively monitoring the rise of Phishing-as-a-Service (PaaS) ...

2024 Trustwave Risk Radar Report: Cyber Threats to the Retail Sector

October 29, 2024

As the holiday shopping season approaches, the 2024 Trustwave Risk Radar Report: Retail Sector ...

Hooked by the Call: A Deep Dive into The Tricks Used in Callback Phishing Emails

October 21, 2024 Katrina Udquin

Introduction Previously, Trustwave SpiderLabs covered a massive fake order spam scheme that ...

Shedding Light on Election Deepfakes

September 25, 2024 Pauline Bolaños

Contrary to popular belief, deepfakes — AI-crafted audio files, images, or videos that depict ...

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content

September 24, 2024 Mike Casayuran

HTML smuggling techniques have been around for quite some time. A previous Trustwave SpiderLabs’ ...

Why Do Criminals Love Phishing-as-a-Service Platforms?

September 23, 2024 Rodel Mendrez

Phishing-as-a-Service (PaaS) platforms have become the go-to tool for cybercriminals, to launch ...

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season

September 17, 2024 Katrina Udquin

The US election is less than 70 days away and threat actors are busy crafting malicious spam that ...

Experiencing a security breach?

Experiencing a security breach?

A Deep-Rooted Infestation: How the ILOVEYOU Bug Continues its Legacy in Modern Worms

Stay Informed

Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks

Tycoon2FA New Evasion Technique for 2025

The Rise of Email Marketing Platforms for Business Email Compromise Attacks

Email Bombing: Why You Need to be Concerned

Rockstar 2FA Phishing-as-a-Service (PaaS): Noteworthy Email Campaigns

Rockstar 2FA: A Driving Force in Phishing-as-a-Service (PaaS)

2024 Trustwave Risk Radar Report: Cyber Threats to the Retail Sector

Hooked by the Call: A Deep Dive into The Tricks Used in Callback Phishing Emails

Shedding Light on Election Deepfakes

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content

Why Do Criminals Love Phishing-as-a-Service Platforms?

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season

Stay Informed

Sign up to receive the latest security news and trends straight to your inbox from Trustwave.