Phishing remains one of the most prevalent and effective tactics used by cybercriminals to trick users into downloading malware or revealing sensitive information. In one recent campaign, attackers are targeting Chinese-speaking users with fake installers for popular software like WPS Office and Sogou. In a separate incident, threat actors are exploiting Microsoft 365’s Direct Send feature—which allows devices to send emails without authentication—to deliver phishing emails that can evade standard security checks. Meanwhile, the FBI has issued a warning to the public about cybercriminals impersonating health care fraud investigators, using fraudulent emails and messages to trick victims into revealing sensitive personal information. Continue reading for more cybersecurity updates from the weekend.