Fake Invitation Phishing Campaign Targets U.S. Organizations With Credential Theft

A large-scale phishing campaign is actively targeting U.S. organizations, using fake event invitations as bait to steal login credentials, intercept one-time passwords, or install remote access tools. The operation has been running since at least December 2025, with researchers tracking a growing pool of malicious domains built around the same repeatable framework. What makes this […] The post Fake Invitation Phishing Campaign Targets U.S. Organizations With Credential Theft appeared first on Cyber Security News.