NYDFS Issues Cybersecurity Threat Alert

NYDFS issues cybersecurity threat alert regarding email scam targeting NYDFS regulated entities

On January 22, the NYDFS issued an alert informing regulated entities about an email phishing scam falsely claiming to represent the regulator. The alert warned that scammers may have sent emails urging recipients to open files, make payments, or share missing files, often using email addresses ending in “[@]myportal.dfs.ny.gov.cazepost.com,” NYDFS stated emails from this domain are not legitimate.

NYDFS emphasized that official communications only come from “[@]dfs.ny.gov” or “[@]public.govdelivery.com” domains and advised recipients to verify unexpected requests for payments, attachments, or credentials by contacting the agency directly. The agency urged recipients to exercise caution when asked to provide sensitive information, open attachments, or enter account information.

Responding to the new wave of global risks

For our third annual Litigation risk report, we spoke to more than 360 UK-based general counsel and senior in-house lawyers from large businesses across automotive, consumer and retail, energy, financial services, real estate and technology sectors.

Now, with the benefit of three years of data, we have deepened our analysis and uncovered the new battlegrounds for business.

This year, our survey respondents reveal that while regulatory disputes, especially in financial services, clean energy and tech, have increased, employment, competition, and environmental claims have eased. Yet, the forecast is far from reaching a plateau: expect a rise in litigation across England and Wales, North America, Asia Pacific, and the EU over the next three years.

AI-related litigation has risen to become the top concern, outpacing intellectual property and breach of contract. Add to this the spectre of geopolitical instability, cyber-attacks, and shifting priorities in sustainability and DEI, and it’s clear that in-house teams will be scaling up to meet a new wave of challenges.

10 ways AI can inflict unprecedented damage in 2026

Looking back at the biggest cybersecurity breaches and intrusions of 2025, here's what I wonder: Will those trends continue unabated into the new year? Or, will 2026 be full of new surprises as threat actors attempt to stay one step ahead of the cybersecurity pros trying to anticipate their next move?

According to the threat intelligence and cybersecurity experts I've talked to, it's likely to be a bit of each. And it should come as no surprise that artificial intelligence topped the threat list for many researchers.

[For this report, I checked in with seven organizations, all trusted sources for my cybersecurity reporting during 2025.]

The weaponization of AI in 2025 appears poised to turn an evolutionary corner in 2026, making previous generations of malware appear benign by comparison.

How Threat Intelligence Will Change Cybersecurity in 2026

As we head into 2026, the cybersecurity landscape is evolving in ways that actually favor the defenders. The threat trends we’re seeing aren’t just challenges.

They are catalysts pushing SOCs to become smarter, more efficient, and more aligned with business goals than ever before.

Forward-thinking leaders are already embracing advanced threat intelligence to turn potential headaches into strategic advantages.

Solutions like ANY.RUN’s Threat Intelligence Feeds, powered by real-time sandbox analysis of live malware and community insights from thousands of organizations, are leading the charge.

They deliver high-fidelity indicators of compromise, rich context, and seamless integrations that help SOCs stay ahead without breaking a sweat.

Use of AI-Generated Images for Fake Insurance Claims and Other Frauds

In 2026, companies and individuals conduct many important transactions using images of objects or documents, rather than the original items themselves. For example, individuals authenticate themselves using photos of their passports; banks process and accept check deposits using images of these checks; employers reimburse employees for expenses submitted with pictures of receipts; and insurers pay claimants based on submitted images of damage to their cars or properties.

Over the last few months, advances in generative AI have given rise to models, such as Google’s Gemini 3, that can create photorealistic images and can therefore fabricate the kinds of images relied upon in these commercial validation workflows.

For insurers in particular, this technology poses a significant risk of an increasing number of fabricated or exaggerated claims, which could have downstream consequences for loss reserving practices.

A new wave of ‘vishing’ attacks is breaking into SSO accounts in real time

Threat hunters and researchers are racing to contain a wave of voice-phishing attacks targeting single sign-on tools, already leading to data theft and extortion attempts. Multiple cybercrime groups are combining voice calls and advanced phishing kits to trick victims into handing over access — including a group identifying itself as ShinyHunters, which has publicly named alleged targets and posted samples of stolen data.

The attacks share common characteristics with previous campaigns attributed to ShinyHunters, which has abused third-party vendors to gain initial access to multiple company networks, including the attack spree that impacted more than 700 Salesforce customer environments last fall.

“Mandiant is tracking a new, ongoing ShinyHunters-branded campaign using evolved voice phishing techniques to successfully compromise SSO credentials from victim organizations and enroll threat actor-controlled devices into victim multifactor authentication solutions,” Charles Carmakal, chief technology officer at Mandiant Consulting, said in an email to CyberScoop.