Top 5 Phishing-Driven Social Engineering Attacks on Companies in 2026

ANY.RUN outlines five phishing-driven social engineering trends — fake Microsoft login pages, banking-themed BlobPhish, ClickFix malicious AI-tool lures, OAuth device-code phishing (EvilTokens), and fake invitations — which increasingly mimic normal business workflows to steal credentials/tokens, deliver macOS malware, or install remote management tools; the report urges SOCs to use interactive sandbox analysis and threat intelligence to validate behavior, reduce gray‑zone alerts, and speed triage and containment.