Claudia Galingani Mongini, Author at Baited

What looks like a harmless calendar invite can be a hidden delivery system.
Attackers are now embedding base64-encoded HTML payloads inside .ics files — turning “urgent meeting” requests into stealth phishing and credential traps. In this week’s #PacketHunters, we dissect how HTML smuggling works inside calendar invites, how different mail clients handle it, and how to simulate it safely before the attackers do.

Cybersecurity Insights

Decoded – Nerd Thoughts: from dumpster dives to AI traps

Cybersecurity Insights / Claudia Galingani Mongini

October isn’t just another month. It’s Cybersecurity Awareness Month, promoted worldwide by agencies like CISA in the US and ENISA in Europe. Their message is simple but urgent: cybersecurity is not just an IT problem, it’s a people problem.Awareness saves systems, organizations, and sometimes entire communities. At Baited, we believe the same – but with

Phishing has evolved from simple scams to AI-driven deception. Discover how attackers use OSINT, automation, and prompting — and how to defend against it.

Phishing Awareness

#PacketHunters – From OSINT to AI prompting: the neverending evolution of phishing

Phishing Awareness / Claudia Galingani Mongini

There was a time when phishing emails were laughably easy to spot.Misspelled words, broken grammar, the classic “Nigerian prince” asking for a wire transfer. It was clumsy social engineering, and yet, surprisingly effective. Fast-forward to 2025, and phishing has become the most successful cyberattack vector worldwide. Not because it’s sophisticated in the traditional sense, but

Cybersecurity Insights Phishing Awareness

Your wrist is a vault.. until the vault leaks!

Cybersecurity Insights, Phishing Awareness / Claudia Galingani Mongini

Your smartwatch isn’t just counting steps, it’s quietly building a map of your life. Every heartbeat, sleep cycle, and GPS ping is logged across different apps and clouds, each one a potential breach point. When attackers combine those leaks with phishing emails that mimic trusted brands, the result is more than stolen data: it’s identity exposure, targeted scams, and a perfect playbook for social engineering.

Opinion / Editorial Phishing Awareness

Decoded: Nerd Thoughts – The Neverending Phish

Opinion / Editorial, Phishing Awareness / Claudia Galingani Mongini

Once, we were true warriors of the net. No AI copilots, no phishing kits—just skills, instincts, and endless nights on IRC and BBS boards. Back then, scams were about access and reputation, loyalty was sacred, and every trick had to be earned. Fast forward to today: phishing is industrialized, automated, and ethics are gone. Less skill, more damage. And the scariest part? We’ve lost vigilance. That’s why phishing remains a neverending story.

Author name: Claudia Galingani Mongini

#PacketHunters – HTML smuggling in Calendar invites (aka the .ics you didn’t inspect)

Decoded – Nerd Thoughts: from dumpster dives to AI traps

#PacketHunters – From OSINT to AI prompting: the neverending evolution of phishing

Your wrist is a vault.. until the vault leaks!

Decoded: Nerd Thoughts – The Neverending Phish