- Cyber Safety
- Posts
- Spoofed by Familiar: Fake AVs, Exec Signatures & Tab Traps
Spoofed by Familiar: Fake AVs, Exec Signatures & Tab Traps
In partnership with
Smart dictation that understands you
Typeless turns your raw, unfiltered voice into beautifully polished writing - in real time.
It works like magic, feels like cheating, and allows your thoughts to flow more freely than ever before.
With Typeless, you become more creative. More inspired. And more in-tune with your own ideas.
Your voice is your strength. Typeless turns it into a superpower.
Bookmark Hijacking Is Being Used to Deliver Malware
Malicious browser extensions and phishing pages are silently adding bookmarks that impersonate internal portals—redirecting users to spoofed login pages.
Alert users on new bookmark creation. Scan for unauthorized bookmarks pointing to login clones or suspicious domains.
Productivity Apps Are Quietly Syncing Browser Histories
Apps like Notion, Miro, or Evernote may request browser history access “for experience improvement”—logging internal tools and session patterns.
Restrict app permissions at install. Warn users about history access during onboarding and audit network telemetry for passive data sync.
Departed employee laptops that aren’t wiped properly may retain synced drive mounts or local cache access—even after account disablement.
Purge local sync on logout. Use tamper-resistant device management to force offboarding actions regardless of network connection.
Become An AI Expert In Just 5 Minutes
If you’re a decision maker at your company, you need to be on the bleeding edge of, well, everything. But before you go signing up for seminars, conferences, lunch ‘n learns, and all that jazz, just know there’s a far better (and simpler) way: Subscribing to The Deep View.
This daily newsletter condenses everything you need to know about the latest and greatest AI developments into a 5-minute read. Squeeze it into your morning coffee break and before you know it, you’ll be an expert too.
Subscribe right here. It’s totally free, wildly informative, and trusted by 600,000+ readers at Google, Meta, Microsoft, and beyond.
Email Signatures Are Being Used to Impersonate Executives
Attackers are copying real executive signatures—including phone numbers, logos, and formatting—to spoof replies in long threads.
Embed verification markers in signatures. Train teams to validate replies by domain and cadence, not just name or format.
Browser Tabs Are Being Used to Detect Corporate Logins
Phishing kits now use browser APIs to monitor open tabs—checking for names like “Okta,” “Workday,” or “Gmail” to time their attack prompts.
Obfuscate tab titles for internal tools. Use browser isolation for critical apps and warn users when tab overlap is detected.
Antivirus Popups Are Being Spoofed With JavaScript Overlays
Fake AV alerts mimicking Windows Defender or Norton are being launched in-browser—urging users to “click to resolve” malware that doesn’t exist.
Block browser overlays in iframe-heavy sites. Teach users to validate alerts from the taskbar or system tray, not the browser.
AI You’ll Actually Understand
Cut through the noise. The AI Report makes AI clear, practical, and useful—without needing a technical background.
Join 400,000+ professionals mastering AI in minutes a day.
Stay informed. Stay ahead.
No fluff—just results.