Particle.news
Download on the App Store
5 ARTICLES
·
2w ago

Cyber Threats to 2026 Midterms Target Accounts and Fake News Sites

Security firms say AI, large batches of leaked fundraising credentials, and a surge in lookalike domains are widening opportunities for phishing, donor fraud and influence operations.

NEW ORLEANS, LOUISIANA - MAY 16: People walk into Sophie B. Wright Charter School in the Uptown neighborhood to cast their votes on May 16, 2026 in New Orleans, Louisiana. New Orleanians were casting their votes to decide U.S. Senate contests, five proposed changes to the state constitution and several local races, however today's primary elections for the U.S. House were suspended after the U.S. Supreme Court ruled Louisiana's congressional map unconstitutional. (Photo by Michael DeMocker/Getty Images)
HOPKINS, SOUTH CAROLINA - MAY 26: People are seen in a mirror as they check-in and fill out ballots during early voting at the Garners Ferry Adult Activity Center on May 26, 2026 in Hopkins, South Carolina. As voters cast early ballots across the state, the South Carolina Senate continues debate on redistricting. (Photo by Sean Rayford/Getty Images)
ATLANTA, GEORGIA - MAY 19: Voters cast their ballots in the state's Primary Midterm at Park Tavern on May 19, 2026 in Atlanta, Georgia. Many positions are on the ballot including, the United States Senate, Governor, Secretary of State, and Attorney General. (Photo by Megan Varner/Getty Images)
Image

Overview

  • Check Point’s June 1 report found a sharp rise in election-related domain registrations and tracked roughly 9,500 leaked ActBlue credentials and 6,500 WinRed credentials that are already circulating in criminal markets.
  • Email phishing is the dominant entry point, with Check Point reporting that 82% of malicious file attacks arrive by email and that stolen credentials enable account takeover and targeted social engineering.
  • Researchers documented cloning of major media brands through lookalike domains that can host fake articles or donation pages, creating rapid pathways for misinformation to appear to come from trusted outlets.
  • Analysts say generative AI is lowering the cost and raising the quality of phishing and deceptive content, letting attackers scale personalized lures and deepfake-style material faster than before.
  • State officials report reduced federal operational support from CISA, so defenders are leaning on brand monitoring, credential scanning, rapid takedowns and staff training, and vendors report high takedown rates and new mitigation tools.