Traditional phishing attachments (macro-docs, PDFs) are losing traction. Attackers are pivoting to a lesser-suspected vector: SVG vector files, which look like harmless graphics yet contain interactive, script-enabled code. According to recent research by Hoxhunt, SVG attachments were nearly negligible in 2024 (~0.1 % of attacks) but ballooned to 4.9 % of phishing lures in just the first half of 2025 — and peaked near 15 % in March 2025.
Why does this matter? Because SVGs combine trust (image format) + capability (XML, scripting, external references) — making them ideal for stealthy, high-impact phishing.

Imagine spending thousands of dollars on a state-of-the-art firewall to protect your network, only to discover it’s been guarding your digital fortress with the equivalent of a “password123” sticky note on the front door. That’s essentially what’s happening with a recently disclosed vulnerability affecting WatchGuard Firebox firewalls.

If you’ve ever wondered why your legitimate business website suddenly ranks for “online casino” or “slot games,” you’re not alone. Website owners worldwide are waking up to a disturbing reality: their digital properties have been quietly hijacked and transformed into spam-spreading machines, all while looking perfectly normal on the surface.

How a single security breach can destroy months or years of SEO work—and what marketers need to know to protect their rankings

Emergency guide for website owners facing malware warnings—what it means, what to do right now, and how to fix it fast

Every 39 seconds, a cyberattack occurs somewhere on the internet. Your website isn’t just sitting quietly on a server waiting for legitimate visitors—it’s constantly being probed, scanned, and tested by automated systems and human attackers looking for weaknesses.