In May 2025, the cryptocurrency sector has experienced a surge in phishing attacks resulting in over $45 million stolen from wallets, particularly targeting Coinbase users. These attacks exploit social engineering tactics such as fake links, impersonation, and fraudulent airdrops, emphasizing the importance of private key security and user vigilance. Concurrently, a stealthy phishing campaign distributing Horabot malware has targeted Windows users across six Latin American countries by disguising itself as invoice-themed emails. This malware hijacks inboxes, spreads via Outlook, and aims to steal banking data. Additionally, the Meta Mirage phishing campaign has compromised Meta Business Suite users through more than 14,000 fake URLs, with 78% of malicious links bypassing browser protections. These URLs are hosted on trusted platforms such as GitHub and Firebase, making detection more difficult.