Security Boulevard

FEBRUARY 14, 2025

And get the latest on ransomware trends and on cybercrime legislation and prevention! Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) called buffer overflow vulnerabilities unforgivable defects that put national and economic security at risk. This week, the U.S.

Banking 63

Banking Cybercrime Cybersecurity Ransomware 63

Security Affairs

DECEMBER 1, 2024

Generative Artificial Intelligence (GAI) is rapidly revolutionizing various industries, including cybersecurity, allowing the creation of realistic and personalized content. In 2022, the Federal Bureau of Investigation (FBI) warned of an uptick in fake profiles designed to exploit victims financially.

Artificial Intelligence 137

Artificial Intelligence Phishing Media Cybercrime 137

Malwarebytes

MAY 1, 2025

Without robust IT budgets or fully staffed cybersecurity departments, small businesses often rely on their own small stable of workers (including sole proprietors with effectively zero employees) to stay safe online. That means that what worries these businesses most in cybersecurity is what is most likely to work against them.

Small Business 88

Small Business Cybersecurity Scams Passwords 88

Security Affairs

JULY 9, 2025

The statement underlined Shellter’s commitment to vetting its customers and cooperating with authorities, while calling for better communication between red and blue team communities in the cybersecurity industry.

Malware 114

Malware Cybercrime Antivirus Hacking 114

Security Affairs

MAY 1, 2025

A cybercrime group named Hive0117 is behind a fresh phishing campaign that targeted Russian organizations with a new version of the DarkWatchman malware, according to Russian cybersecurity firm F6. Hive0117 targets Russian firms in multiple sectors with phishing attacks using a modified version of the DarkWatchman malware.

Malware 90

Malware Phishing Telecommunications Antivirus 90

Krebs on Security

MAY 15, 2025

In what experts are calling a novel legal outcome, the 22-year-old former administrator of the cybercrime community Breachforums will forfeit nearly $700,000 to settle a civil lawsuit from a health insurance company whose customer data was posted for sale on the forum in 2023. Conor Brian Fitzpatrick , a.k.a.

Healthcare 244

Healthcare Insurance Data breaches Government 244

Security Affairs

JULY 18, 2025

In March 2024, US CISA, the FBI, and MS-ISAC issued a joint cybersecurity advisory (CSA) to warn of attacks involving Phobos ransomware variants such as Backmydata , Devos, Eight, Elking, and Faust.

Ransomware 132

Ransomware Encryption Malware Cybercrime 132

Malwarebytes

JUNE 30, 2025

Then in March, 2024, the data of over 70 million people was posted for sale on an online cybercrime forum. A later breach, revealed in July, 2024 , involved a hack of AT&T’s cloud storage provider, Snowflake, compromising call and text records from 2022 for nearly 109 million US customers. Stay tuned!

Data breaches 121

Data breaches Cybercrime Hacking Encryption 121

SecureWorld News

FEBRUARY 13, 2025

According to a 2023 study by Sumsub , deepfake fraud attempts increased by 704% between 2022 and 2023. Collaboration with cybersecurity firms: Partnering with cybersecurity providers can help organizations stay ahead of evolving deepfake threats and adopt best practices in detection and mitigation.

Social Engineering 96

Social Engineering Authentication Identity Theft Engineering 96

Zero Day

JUNE 6, 2025

The data in question was posted on a Russian cybercrime forum on May 15 and then uploaded again on June 3, apparently garnering attention from other cybercriminals and potential buyers. But in this age of cybercrime, these numbers have become vulnerable.

Password Management 128

Password Management Passwords Identity Theft Artificial Intelligence 128

Security Affairs

MARCH 2, 2025

. “On February 3, 2025, Lee Enterprises, Inc. (“Lee” or the “Company”) experienced a systems outage caused by a cybersecurity attack. Upon discovery, Lee activated its incident response team, comprised of internal personnel and external cybersecurity experts retained to assist in addressing the incident.”

Ransomware 82

Ransomware Cybercrime Encryption Healthcare 82

Malwarebytes

FEBRUARY 4, 2025

A paradigm shift in technology is hurtling towards us, and it could change everything we know about cybersecurity. When ChatGPT was unveiled to the public in late 2022, security experts looked on with cautious optimism, excited about the new technology but concerned about its use in cyberattacks. Uhh, again, that is.

Artificial Intelligence 143

Artificial Intelligence Small Business Malware Technology 143

Security Affairs

OCTOBER 16, 2024

However, the Brazilian national turned into more complex cybercriminal activities by 2022. The link between Luan’s hacktivism and cybercrime was established due to his bad Operational security (opsec). CrowdStrike’s investigation reveals that USDoD’s leader, Luan BG, has been a hacktivist active since at least 2017.

Data breaches 131

Data breaches Media Cybercrime Accountability 131

SecureList

DECEMBER 16, 2024

In general, the number of unique threads discussing drainers on underground markets increased from 55 in 2022 to 129 in 2024, which is remarkable. Increase in high-profile law enforcement operations against cybercrime groups 2024 was a significant year in the global high-profile fight against cybercrime.

Marketing 103

Marketing Data breaches Cryptocurrency Malware 103

Security Affairs

APRIL 7, 2025

Microsoft credited controversial actor EncryptHub, a lone actor with ties to cybercrime, for reporting two Windows flaws. After years of low-profile IT work and self-study, his activity paused in 2022, likely due to jail time. Although involved in cybercrime, EncryptHub also pursued legitimate security research.

Cybercrime 75

Cybercrime Malware Hacking VPN 75

Security Affairs

DECEMBER 17, 2024

” The Remote Access Trojan (RAT) has been active since July 2022. The FBI recommends limiting or isolating vulnerable devices, monitoring networks, and following cybersecurity best practices. Threat actors leveraged edge routers, or living on the edge access, to passively collect traffic and set up a covert C2 infrastructure.

Architecture 112

Architecture Malware Internet Internet 112

Security Affairs

JUNE 6, 2025

After Russia’s invasion of Ukraine in February 2022, Rudometov reportedly fled to Krasnodar, Russia. The cybersecurity firm’s recommendations for malware victims are: Consult an expert : For thorough malware removal and system security, seek professional help if needed. ” continues the announcement.

Malware 89

Malware Passwords Identity Theft Government 89

SecureWorld News

JULY 17, 2025

For cybersecurity professionals safeguarding the intersection of digital and industrial systems, Fortinet's newly released 2025 State of Operational Technology and Cybersecurity Report offers a rare blend of optimism and realism. AI can revolutionize cybersecurity across legacy OT systems with minimal disruption.

CISO 79

CISO Cyber Risk Risk CSO 79

SecureWorld News

JULY 21, 2025

Europe faces escalating cybersecurity challenges in its daily digital operations. While this initiative offers immediate benefits for digital resilience, providing free AI-powered cybersecurity resources to 27 EU nations , it also prompts critical questions about placing extensive security infrastructure in the hands of a single U.S.-based

Cybersecurity 69

Cybersecurity Technology Cybercrime Cyber threats 69

Malwarebytes

MAY 1, 2025

However, as it points out, some of these groups involved in cybercrime also maintain strong links to the Russian government. In 2022, it found 63 zero-day exploits, and the year before that it was 95, but 2019 and 2020 both showed just 31 zero-day exploits each. Keep threats off your devices by downloading Malwarebytes today.

Spyware 85

Spyware Mobile Technology Government 85

Security Affairs

MARCH 16, 2025

Apple fixed the third actively exploited zero-day of 2025 Switzerland’s NCSC requires cyberattack reporting for critical infrastructure within 24 hours SideWinder APT targets maritime and nuclear sectors with enhanced toolset U.S.

Spyware 77

Spyware Cybercrime IoT Firewall 77

Thales Cloud Protection & Licensing

DECEMBER 17, 2024

Compounding the challenge, 46% of Account Takeover (ATO) attacks focused on API endpoints, up from 35% in 2022. Generative AI and Cybercrime Generative AI has already lowered the entry barrier for cybercriminals, allowing even inexperienced actors to launch relatively sophisticated attacks quickly, easily, and at scale.

Risk 71

Risk Digital transformation Software Technology 71

Centraleyes

JUNE 26, 2025

The improvement follows a cascade of regulatory crackdowns after the 2022 Optus and Medibank breaches, which exposed the records of millions and put board directors on notice. The Regulatory Catalyst The Cybersecurity Act 2024, passed in December, codifies 72-hour ransomware payment reporting and heftier penalties for lax controls.

Cyber Insurance 52

Cyber Insurance Insurance Backups Healthcare 52

Thales Cloud Protection & Licensing

DECEMBER 17, 2024

Compounding the challenge, 46% of Account Takeover (ATO) attacks focused on API endpoints, up from 35% in 2022. Generative AI and Cybercrime Generative AI has already lowered the entry barrier for cybercriminals, allowing even inexperienced actors to launch relatively sophisticated attacks quickly, easily, and at scale.

Risk 62

Risk Technology CISO Threat Detection 62

Security Affairs

JUNE 6, 2025

Details in our flash alert on CATALYST: [link] pic.twitter.com/oRHQzzIph8 — PRODAFT (@PRODAFT) June 6, 2025 The Qilin ransomware group has been active since at least August 2022 but gained attention in June 2024 for attacking Synnovis , a UK governmental service provider for healthcare.

Ransomware 80

Ransomware Authentication Healthcare Firewall 80

SecureWorld News

JANUARY 7, 2025

Department of the Treasury's Office of Foreign Assets Control (OFAC) has taken decisive action against Integrity Technology Group, Incorporated (Integrity Tech), a Beijing-based cybersecurity company, for its alleged involvement in malicious cyber activities targeting U.S. Follow SecureWorld News for more stories related to cybersecurity.

Cybersecurity 117

Cybersecurity Cyber threats Government VPN 117

SecureWorld News

DECEMBER 27, 2024

Death, taxes, and cybersecurity. While cybersecurity has its bad side (breaches, hacks, AI); it also has a good side (good practitioners and vendors fighting the good fight, AI). AI dominates a lot of the predictions; as does the continued shortage of folks to fill cybersecurity roles. Zero trust is not going anywhere.

Cybersecurity 123

Cybersecurity CISO Risk Government 123

SecureWorld News

JANUARY 23, 2025

Among the disbanded bodies was the Cyber Safety Review Board (CSRB), a public-private initiative established in 2022 to assess significant cybersecurity events and provide actionable recommendations. Critics argue that eliminating a body focused on incident response and systemic analysis undermines national cybersecurity.

Telecommunications 127

Telecommunications Artificial Intelligence Cyber threats Cybersecurity 127

Security Affairs

MARCH 22, 2025

In August 2022, the U.S. Tornado Cash was also used to launder more than $96 million of malicious cyber actors funds derived from the June 24, 2022 Harmony Bridge Heist, and at least $7.8 Blockchain cybersecurity firm Elliptic linked the theft of $112.5 million from the recent Nomad crypto heist. are frozen.

Cryptocurrency 75

Cryptocurrency Cybercrime Cyber threats Hacking 75

Security Affairs

MAY 25, 2025

Silent Ransom Group targeting law firms, the FBI warns Leader of Qakbot cybercrime network indicted in U.S. Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. local government networks U.S.

Data breaches 68

Data breaches Malware Cybercrime Ransomware 68

Krebs on Security

JANUARY 27, 2025

President Trump last week issued a flurry of executive orders that upended a number of government initiatives focused on improving the nation’s cybersecurity posture. One of the CSRB’s most recognizable names is Chris Krebs (no relation), the former director of the Cybersecurity and Infrastructure Security Agency (CISA).

Cybersecurity 294

Cybersecurity Government Cryptocurrency Artificial Intelligence 294

The Last Watchdog

DECEMBER 16, 2021

And there will be loosely affiliated networks of solo operators that pick and choose who they work with through a robust cybercrime underground, just like rotating new drummers through a band. In 2022 we expect to see more aggressive and complex ransomware efforts. Central importance of identity.

CISO 262

CISO Ransomware Risk Authentication 262

Security Boulevard

DECEMBER 26, 2022

Cybercrimes are more rampant in the year 2022. The rate of cybercrimes is increasing every year, and it is expected to reach its highest next year. It is said that cybercrime affects the security of more than 80% of businesses […].

Cybercrime 110

Cybercrime Cyber Attacks Data privacy Cyber threats 110

Joseph Steinberg

JUNE 9, 2022

According to published reports, immediately after discovering the unauthorized encryption of data by ransomware on some district computers, technology personnel shut down the districtwide computer system, and commenced an investigation along with outside cybersecurity experts.

Ransomware 363

Ransomware Artificial Intelligence Cybercrime Education 363

SecureWorld News

MARCH 15, 2023

Alright, how many of you saw a cryptocurrency ad on TV in 2022? The FBI's Internet Crime Complaint Center (IC3) has released its 2022 Internet Crime Report , which reveals the trends and impacts of cybercrime in the United States. However, phishing schemes were not the most costly type of cybercrime in terms of financial losses.

Cybercrime 136

Cybercrime Scams Cryptocurrency Identity Theft 136

Krebs on Security

JANUARY 30, 2024

technology companies during the summer of 2022. stole at least $800,000 from at least five victims between August 2022 and March 2023. 2022 that an intrusion had exposed a “limited number” of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials.

Social Engineering 363

Social Engineering Mobile Cybercrime Passwords 363

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. Follow me on Twitter: @securityaffairs and Facebook.

Cybercrime 145

Cybercrime Education Accountability Phishing 145