The FBI’s latest alert reveals that cybercriminals have swiped a whopping $262 million this year by impersonating bank support teams in sophisticated account takeover scams, hitting everyone from individuals to SMBs across various sectors. These crooks use slick social engineering tactics, like phishing sites and fake calls, to snag login credentials and MFA codes, then swiftly drain accounts by wiring funds to untraceable crypto wallets while locking out the real owners. It’s a nasty game that exploits trust, with over 5,100 complaints logged at the IC3 since January, showing how even tech-savvy pros can get caught if they’re not careful. For SMBs and MSPs, the takeaway is to crank up your defenses—use unique, complex passwords, enable multi-factor auth everywhere, stick to bookmarked banking sites, and if you get hit, immediately alert your bank and report to ic3.gov to minimize the damage.
You May Also Enjoy
French Football Federation discloses data breach after cyberattack
The French Football Federation (FFF) recently fessed up to a data breach where hackers snagged access to their admin software via a hijacked account, exposin...
Malicious LLMs empower inexperienced hackers with advanced tools
Malicious large language models like WormGPT 4 and KawaiiGPT are basically handing out cybercrime starter kits, letting script kiddies crank out sophisticate...
OpenAI discloses API customer data breach via Mixpanel vendor hack
OpenAI just fessed up to a sneaky data slip involving some ChatGPT API users, all thanks to a smishing attack on their analytics vendor, Mixpanel—yeah, that ...
Mixpanel Security Breach
Mixpanel recently spilled the beans on a security hiccup involving a smishing attack that snuck up on a handful of customers back on November 8th, 2025, prov...