The FBI reports that cybercriminals have stolen over $262 million through account takeover scams since January 2025. These attackers impersonate bank support teams to gain access to victims' accounts, quickly transferring funds to hard-to-trace cryptocurrency wallets. Victims are advised to monitor their accounts closely and act swiftly if targeted.

Cybercriminals are increasingly targeting brokerage accounts using sophisticated phishing schemes to execute "ramp and dump" scams, manipulating stock prices without traditional social media promotions. By utilizing compromised accounts, they purchase shares to inflate prices and then sell at a profit, leaving victims with worthless stocks. The scheme highlights vulnerabilities in multi-factor authentication processes that many financial institutions still rely on.

Microsoft has issued a warning about a phishing scam known as "Payroll Pirate" that compromises employee accounts on Workday and other HR platforms. Attackers gain access through deceptive emails and adversary-in-the-middle tactics, allowing them to redirect payroll deposits to their own accounts. The scam has targeted multiple universities, resulting in compromised accounts and widespread phishing attempts.