Phishing season is open, and CoGUI is casting a wide net. This crafty phishing kit has been actively targeting organizations in Japan by impersonating well-known consumer and financial brands. In a separate campaign, the threat actor Venom Spider is targeting corporate HR departments with spear-phishing emails disguised as job applications. Meanwhile, German authorities, led by Bavarian law enforcement, have successfully dismantled the Pygmalion dark web marketplace, seizing servers, onion domains, and customer data linked to over 7,000 illegal drug transactions. Today’s must-know stories in cybersecurity, all in one place.