Read the latest on social engineering attacks, product launches, and company news.
One of the most significant JavaScript supply chain compromises of 2026 started with a Slack invite, not a vulnerability. Here's the full kill chain and what it means for how you prepare your people.
The world's first in-person, reality-based phishing simulation unit. Built to test your team's physical security protocols and situational awareness.
An analysis of p1bot.io, a subscription vishing-as-a-service platform with ElevenLabs text-to-speech hardcoded directly into its attack workflow.
Today we're publicly releasing the Mirage Ethical Simulation Standards - a set of commitments that define how we simulate, the lines we won't cross, and the principles behind every test we run.
North Korean IT workers are getting hired through your careers page. Learn how DPRK operatives use stolen identities, laptop farms, and social engineering to infiltrate companies, and what human risk teams can do to detect and prevent hiring fraud.
Dynamic profile group synchronization enables organizations to automatically apply targeted email security policies based on real-time human risk data from Mirage's AI social engineering simulations.
How a single phone call led to the Clorox breach and why IT help desks are now top targets for social engineering attacks.
How a single phone call led to the Clorox breach and why IT help desks are now top targets for social engineering attacks.
Discover the evolution of Scattered Spider, the cybercrime group behind major social engineering attacks from 2023 to 2025.
Learn how to run ethical AI social engineering simulations that build trust, not fear. This guide helps security, HR, and executive teams safely expose modern threats like deepfake calls and AI phishing without compromising employee wellbeing. Download the full PDF.
In 2024, deepfake scams became a real threat, with criminals using AI-generated voices and faces to impersonate executives and steal millions.
Are Phishing Simulations Backfiring? New Study Uncovers the Hidden Risks of Cybersecurity Drills
Exploring the Controversy: How Effective Are Phishing Simulations and Security Awareness Training in Reality?
Deepfake detection is futile; focus on verifying authenticity for a secure digital future
Nation-state attackers leverage GPT for sophisticated cyber operations, outpacing traditional security defenses
Multinational company in Hong Kong loses $25.6 million to a sophisticated deepfake scam
