TI News Feed · Threat Intelligence Guides
View live threat intel feed →
TI News FeedThreat Intelligence Guides & ResourcesView Live Feed →
Topic · Threat Intelligence

Phishing: Live Threat Intelligence & Analysis

Track active phishing campaigns, lures and techniques in real time, with analysis of how phishing is evolving and how to defend your people.

Phishing remains the single most common way attackers gain initial access, because it targets people rather than technology. No firewall stops an employee from voluntarily entering their password into a convincing fake login page. This page aggregates the latest phishing and social-engineering reporting from authoritative sources, with analysis of the trends below.

The phishing landscape

Phishing has diversified far beyond email. Spear phishing targets specific individuals with personalized lures; whaling goes after executives; business email compromise (BEC) impersonates trusted parties to authorize fraudulent payments, often with no malware at all; and smishing and vishing move the attack to SMS and voice. Attackers also increasingly defeat multi-factor authentication by relaying one-time codes in real time or bombarding users with push-approval requests.

The AI inflection point

One of the biggest shifts is the use of generative AI by attackers. For years, clumsy grammar was a reliable tell of a phishing message — that signal is disappearing. AI lets attackers produce flawless, fluent, well-targeted lures at scale in any language, and deepfake audio is supercharging voice-based fraud. The practical implication: defenders can no longer rely on spelling and grammar as a filter, and must emphasize process and verification over surface clues.

What to watch

  • Active campaigns targeting your sector — lures and themes tailored to specific industries.
  • MFA-bypass techniques — adversary-in-the-middle phishing kits and push-bombing.
  • Brand impersonation — look-alike domains and fake support accounts.

Defensive priorities

Effective defense layers people, process and technology: deploy phishing-resistant MFA such as passkeys (which cannot be relayed like one-time codes), enforce email authentication (SPF, DKIM, DMARC), run realistic awareness training, require out-of-band verification for payment and account changes, and make reporting suspicious messages quick and blame-free. Our guide covers phishing types, examples and prevention in detail, and relatedly, social engineering more broadly.

The live feed below tracks phishing campaigns and social-engineering reporting as it breaks — useful for warning your people before a lure lands.

In-depth guides on phishing

AttacksWhat Is Phishing? Types, Examples and PreventionAttacksWhat Is Social Engineering? Techniques and DefensesAttacksWhat Is a Data Breach? Causes, Impact and Prevention

Related topics

TopicData Breaches: Live Threat IntelligenceTopicMalware: Live Threat IntelligenceTopicRansomware: Live Threat Intelligence & Analysis