Outsourcing Attacks: The Division of Labor Inside Social Engineering Campaigns
Cybercriminals no longer act alone. Learn how modern social engineering attacks rely on specialized roles, dark supply chains, and outsourced labor.
Making Social Engineering Visible: Four Structural Problems in Organizations
Why do social engineering attacks keep bypassing mature security infrastructure? This article breaks down the Four T Problem and offers concrete steps to make human-layer threats visible before they succeed.
When Help Desks Harm: IT Procedural Impersonation Attacks
Attackers are now using Microsoft Teams to impersonate IT help desk staff by initiating chats, building trust, and walking employees through the steps necessary to grant remote access. It represents an overdue realization that the help desk is a valuable target.
Preparing your Organization for the Transition Window: What Microsoft SMS Retirement Can Teach Us
Microsoft's SMS phase-out is the right move — but the transition itself opens a new attack surface. Here's what organizations need to do before the window closes.
The Compliance Attack: Why AI Employees Are the Perfect Victims
AI agents are expanding the natural language attack surface. Learn how compliance attacks exploit prompts, memory, tools, and voice, and how security teams can respond.
AiTM at Scale: What the Code of Conduct Campaign Reveals About Detection Architecture
A credential-theft campaign reached 35,000 users and cleared every automated control in the enterprise stack. Here's how adversary-in-the-middle attacks exploit the psychology of compliance — and what it takes to stop them.
Awareness Without Agency: Why Security Culture Needs Empowered People
Security awareness programs are failing — employees don't care, but organizations often don't give them the tools or agency to act.
With Axios, Attackers Targeted Something Deeper than Code
The most sophisticated cyberattack of the year succeeded using the oldest trick in the book amplified with AI.
Engineered Trust: Detecting Pretexting Attacks that Play the Long Game
This piece examines the psychological mechanics behind long-con pretexting attacks and why traditional defenses fail once trust has already been operationalized.
Most recent
AI is industrializing social engineering. Learn how attackers are building their stack—and what defenders must do before the window closes.
Social engineering demands psychology-based solutions, not just security policies and employee training.
Humanix has been selected as an RSA Innovation Sandbox finalist — one of the most competitive and respected recognitions in cybersecurity, awarded to a Top 10 group.
Social engineering is the top breach vector, and blaming victims doesn’t work. Humanix fights back by using AI to detect manipulation as it happens and protect people from human-targeted attacks.
Enter your contact info and we'll be in touch soon
