🎯 Threat Intelligence

BlackFile's Vishing Surge [New Threat]

A new threat actor, BlackFile, is making serious waves, turning the phone into a weapon for data theft and extortion. Retail and hospitality are in their crosshairs.

Threat Digest Apr 25, 2026 5 min read
Abstract digital network with red warning nodes representing cyber threats

⚡ Key Takeaways

  • New threat actor BlackFile is actively targeting retail and hospitality sectors with vishing attacks. 𝕏
  • The group impersonates IT support to steal employee credentials and exfiltrate sensitive data from Salesforce and SharePoint. 𝕏
  • BlackFile demands seven-figure ransoms and has used swatting tactics to pressure victims. 𝕏
  • RH-ISAC recommends strengthening call-handling policies and employee training to combat these attacks. 𝕏
Ibrahim Samil Ceyisakar
Written by

Ibrahim Samil Ceyisakar

Founder and Editor in Chief. Technology entrepreneur tracking AI, digital business, and global market trends.

#blackfile #data theft #extortion #hospitality security #phishing #retail security #vishing
More in Threat Intelligence →

Worth sharing?

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by Bleeping Computer

Related Stories

📬

Stay in the loop

The week's most important stories from Threat Digest, delivered once a week.

No spam. Unsubscribe any time.