Home Current Threats Ransomware UK Archives About

Real threats we saw last month

Real patterns from real accounts, simplified for humans
March 2026
Most common entry point Fake file share emails
Most impersonated role IT Support
Most targeted app Outlook
Time of day it showed up most Early Morning

Seen in the Wild

Fake OneDrive File Shares

+
What people saw

An email saying "Alex shared a document with you" that looked like a normal OneDrive message.

What was really happening

The link opened a fake Microsoft login page designed to capture passwords.

Threat example screenshot