The Last Watchdog

DECEMBER 12, 2023

A look back at the cybersecurity landscape in 2023 rings all-too familiar: cyber threats rapidly evolved and scaled up , just as they have, year-to-year, for the past 20 years. Eyal Benishti , CEO, IRONSCALES Benishti Generative AI (GenAI) reshaped cybersecurity in 2023. What should I be most concerned about – and focus on – in 2024?

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Software 258

Security Affairs

MARCH 10, 2025

Backups are insufficient; IPS is recommended for protection. In 2023, Loretto Hospital experienced another data security incident. On January 19, 2023, a former employee misappropriated security camera footage of a limited number of patients and posted it on Facebook. Victims include AMD and Keralty. Ransomware attacks on U.S.

Hacking 118

Hacking Healthcare Backups Ransomware 118

Security Affairs

APRIL 13, 2025

Backups are insufficient; IPS is recommended for protection. In 2023, Loretto Hospital experienced another data security incident. On January 19, 2023, a former employee misappropriated security camera footage of a limited number of patients and posted it on Facebook. Victims include AMD and Keralty. Ransomware attacks on U.S.

Data breaches 130

Data breaches Unstructured Data Identity Theft Healthcare 130

IT Security Guru

JANUARY 22, 2025

As such, some tips and tricks that worked for websites in 2023 might be obsolete in 2025. If you are looking to improve your cybersecurity, consider these plugins to build a more robust defence: Wordfence: A comprehensive security solution with a firewall, malware scanner, and login security features like two-factor authentication.

Artificial Intelligence 116

Artificial Intelligence Backups Firewall Mobile 116

CyberSecurity Insiders

MAY 28, 2023

A new study conducted by Veeam Software claims that hackers have shifted their focus towards backup storage appliances, as they provide assurance that the victim will definitely pay the demanded ransom amount. Instead, it is better to invest in technologies that offer on-site and off-site backup appliances, as well as cloud resources.

Backups 110

Backups Ransomware Encryption Software 110

Security Affairs

FEBRUARY 11, 2025

“They allegedly used the Phobos malware to encrypt information on the networks, blocking the companies from accessing the data unless a ransom was paid and a decryption key was provided by the gang. Source Nation Thailand The gang compromised at least 17 Swiss companies using the Phobos ransomware between April 2023 and October 2024.

Ransomware 73

Ransomware Encryption Backups Malware 73

Malwarebytes

OCTOBER 11, 2023

In other news, both LockBit and the Akira ransomware gang, the latter of which has tallied 125 victims since we first began tracking them in April 2023, were confirmed last month to be exploiting a specific zero-day flaw ( CVE-2023-20269 ) in Cisco VPN appliances. Create offsite, offline backups. Detect intrusions.

Ransomware 141

Ransomware Social Engineering Backups Engineering 141

Security Affairs

MAY 24, 2025

“While SRG has historically victimized companies in many sectors, starting Spring 2023, the group has consistently targeted US-based law firms, likely due to the highly sensitive nature of legal industry data.” ” reads the alert issued by the FBI.

Social Engineering 114

Social Engineering Antivirus Phishing Engineering 114

Malwarebytes

SEPTEMBER 12, 2023

Before this sudden increase in attacks, we had been observing an average decrease of 20 attacks a month from the group since April 2023. From April 2023 to July 2023, their median number of attacks was actually slightly higher than this at 69 attacks a month, making the decline seem less substantial. Detect intrusions.

Ransomware 128

Ransomware Backups Data breaches Malware 128

Security Affairs

OCTOBER 20, 2024

Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches 119

Data breaches Cybercrime Cyber Insurance Marketing 119

Malwarebytes

NOVEMBER 15, 2023

Formed around 2016 to defend Ukraine’s cyberspace against Russian interference, the UCA used a public exploit for CVE-2023-22515 to gain access to Trigona infrastructure. Use endpoint security software that can prevent exploits and malware used to deliver ransomware. Create offsite, offline backups. Prevent intrusions.

Ransomware 127

Ransomware Education Backups Cyber Insurance 127

Security Affairs

JUNE 16, 2023

An updated version of the Android remote access trojan GravityRAT can steal WhatsApp backup files and can delete files ESET researchers discovered an updated version of Android GravityRAT spyware that steals WhatsApp backup files and can delete files. The malware is distributed as the messaging apps BingeChat and Chatico.

Backups 98

Backups Spyware Malware Accountability 98

Security Affairs

JANUARY 13, 2024

The Finish National Cybersecurity Center (NCSC-FI) warns of increased Akira ransomware attacks targeting NAS and tape backup devices of organizations in the country. Threat actors are wiping NAS and backup devices. In addition, during Christmas, there was one incident caused by another ransomware malware family.”

Ransomware 137

Ransomware Backups VPN Authentication 137

SecureList

DECEMBER 1, 2023

Analysis of samples exploiting CVE-2023-23397 vulnerability On March 14, Microsoft reported a critical Elevation of Privilege (EoP) vulnerability (CVE-2023-23397) in the Outlook client. This feature bypass vulnerability (CVE-2023-29324) was itself patched in May.

Malware 139

Malware Ransomware Encryption Energy and Utilities 139

SecureList

DECEMBER 1, 2023

Quarterly figures According to Kaspersky Security Network, in Q3 2023: Kaspersky solutions blocked 694,400,301 attacks from online resources across the globe. Attempts to run malware for stealing money from online bank accounts were stopped on the computers of 76,551 unique users. 2 Turkmenistan 3.5 3 China 2.4 4 Tajikistan 2.1

Mobile 121

Mobile Ransomware Malware Adware 121

SecureWorld News

JANUARY 16, 2025

A report from 2023 revealed that 67% of energy and utility companies faced ransomware attacks, with many incidents exploiting unpatched vulnerabilities. Develop backup and recovery plans: Data recovery plans are essential to mitigate the impact of cyber incidents.

Energy and Utilities 109

Energy and Utilities IoT Artificial Intelligence Backups 109

Anton on Security

JANUARY 3, 2023

this data point is from 2020 , so treat this as a low boundary in 2023. This also reminds me that if you are owned, your cloud environment is probably also owned…] “Mandiant research indicates that threat actors are increasingly targeting backups to inhibit reconstitution after an attack. Now, go and read the report!

Cybersecurity 185

Cybersecurity Backups DDOS Accountability 185

SecureList

JUNE 1, 2023

Since it is impossible to inspect modern iOS devices from the inside, we created offline backups of the devices in question, inspected them using the Mobile Verification Toolkit’s mvt-ios and discovered traces of compromise. Install MVT Once the backup is ready, it has to be processed by the Mobile Verification Toolkit.

Malware 145

Malware Backups Mobile DNS 145

SecureList

MAY 15, 2025

Since Q2 2023, the percentage of ICS computers on which malicious objects were blocked has been lower than the indicator of the same quarter of the previous year. Most malicious scripts and phishing pages act as droppers or loaders of next-stage malware (spyware, crypto miners and ransomware). times more) were blocked.

Spyware 88

Spyware Phishing Internet Internet 88

Security Affairs

JANUARY 13, 2024

The Finish National Cybersecurity Center (NCSC-FI) warns of increased Akira ransomware attacks targeting NAS and tape backup devices of organizations in the country. Threat actors are wiping NAS and backup devices. According to the NCSC-FI, six out of seven infections were caused by Akira family malware.

Ransomware 124

Ransomware Backups VPN Authentication 124

Malwarebytes

DECEMBER 13, 2023

In November there were 457 total ransomware victims, making it the most active month for ransomware gangs in 2023 so far besides May. The top stories of the month include ALPHV’s shutdown, an increased focus on the healthcare sector, and high-profile attacks on Toyota, Boeing, and more using a Citrix Bleed vulnerability (CVE-2023-4966).

Ransomware 119

Ransomware Healthcare Encryption Backups 119

Webroot

OCTOBER 4, 2024

The most common form of cyberattack is malware , a type of software that’s used to break into your computer system. Last year alone, there were more than 6 billion malware attacks detected worldwide. Some of the many forms of malware include: Ransomware : Prevents you from accessing your files, devices or network unless you pay money.

Malware 116

Malware Backups Adware Ransomware 116

SecureList

JUNE 26, 2023

In this report, we have analyzed the key threats to small and medium-sized companies in 2022 and 2023, and provided advice on how to stay safe. We then ran these software names against Kaspersky Security Network (KSN)* telemetry to find out how much malware and unwanted software was distributed under the guise of these applications.

Cybercrime 123

Cybercrime Phishing Banking Malware 123

Krebs on Security

APRIL 14, 2023

On April 6, 2023, the FBI’s Denver office issued a warning about juice jacking in a tweet. “Bad actors have figured out ways to use public USB ports to introduce malware and monitoring software onto devices. “Think twice before using public charging stations,” the FCC tweeted.

Mobile 324

Mobile Software Backups Technology 324

Security Affairs

FEBRUARY 6, 2024

China-linked APT group breached the Dutch Ministry of Defence last year and installed malware on compromised systems. “The Ministry of Defence (MOD) of the Netherlands was impacted in 2023 by an intrusion into one of its networks. COATHANGER is a stealthy malware that hooks system calls that could reveal its presence.

Malware 137

Malware Firmware VPN Backups 137

Malwarebytes

FEBRUARY 14, 2024

In 2023, the CL0P ransomware gang broke the scalability barrier and shook the security world with a series of short, automated campaigns, hitting hundreds of unsuspecting targets simultaneously with attacks based on zero-day exploits. There were about 4,500 known ransomware attacks in 2023, although the true figure is probably twice that.

Ransomware 103

Ransomware Cybercrime Backups Malware 103

SecureList

MARCH 12, 2024

Profile of participants and applications We collected the data from a sample of the application security assessment projects our team completed in 2021–2023. Mitigation: do not store files containing sensitive data, such as passwords or backups, in web application publish directories.

Passwords 140

Passwords Authentication Architecture Risk 140

SecureList

DECEMBER 27, 2024

Percentage of ICS computers on which malicious objects were blocked, by quarter, 20222024 Compared to the third quarter of 2023, the percentage decreased by 1.7 Next-stage malware Malicious objects used to initially infect computers deliver next-stage malware:spyware, ransomware, and miners, to victims’ computers. pp to 0.71%.

Malware 104

Malware Spyware Internet Internet 104

Security Affairs

APRIL 15, 2024

The Ukrainian hacking group Blackjack used a destructive ICS malware dubbed Fuxnet in attacks against Russian infrastructure. Below is the timeline of the attack published on ruexfil.com: Initial access June 2023. Upon running on the target device, the malware initiates a new child process to lock out the device.

Malware 144

Malware Firmware IoT Hacking 144

Malwarebytes

MAY 1, 2025

In 2024, Malwarebytes found more than 22,800 phishing apps on Android, according to the recent 2025 State of Malware report.Disguised as apps such as TikTok, Spotify, and WhatsApp, these Android apps can trick victims into handing over their associated usernames and passwords when asking them to login. Create offsite, offline backups.

Small Business 96

Small Business Cybersecurity Scams Passwords 96

Security Affairs

MARCH 23, 2025

Cisco Talos found UAT-5918, active since 2023, using web shells and open-source tools for persistence, info theft, and credential harvesting. Cisco Talos uncovered UAT-5918, an info-stealing threat actor active since 2023, using web shells and open-source tools for persistence and credential theft.

Backups 69

Backups Healthcare Accountability Malware 69

Malwarebytes

MAY 8, 2023

Known ransomware attacks by gang, April 2023 Known ransomware attacks by country, April 2023 Known ransomware attacks by industry sector, April 2023 Cl0p ransomware, which gained prominence in March by exploiting a zero-day vulnerability in GoAnywhere MFT, went comparatively silent with just four attacks in April.

Ransomware 88

Ransomware Backups Encryption Education 88

Malwarebytes

JUNE 9, 2023

Known ransomware attacks by gang, May 2023 This isn't the first time this year a gang has overhauled LockBit and climbed to the top spot on our monthly charts. Let's jump right in with MalasLocker, who burst onto the scene last month with 171 total victims—beating out LockBit (76) by almost 100 known attacks. A new norm?

Ransomware 98

Ransomware Education Encryption Software 98

Security Affairs

FEBRUARY 11, 2024

Raspberry Robin is a Windows worm discovered by cybersecurity researchers from Red Canary, the malware propagates through removable USB devices. The malware uses TOR exit nodes as a backup C2 infrastructure. ” The vulnerability CVE-2023-36802 is a Type Confusion issue in Microsoft Streaming Service Proxy.

Malware 140

Malware Backups Manufacturing Hacking 140

Malwarebytes

AUGUST 10, 2023

July saw one of the highest number of ransomware attacks in 2023 at 441, second only to a record-breaking 556 attacks in May. Known ransomware attacks by gang, July 2023 The LockBit gang is experiencing a steady four-month decline in the number of attacks it has carried out. From March 2023 to July 2023, we recorded a total of 2,130.

Ransomware 90

Ransomware Backups Encryption Software 90

Malwarebytes

DECEMBER 29, 2023

As the holidays put people closer to family and friends (and ransomware gangs closer to attacking— seriously, watch out for that ), Malwarebytes Labs is sharing some of the brighter moments of 2023 in which ransomware gangs didn’t get what they wanted. Here are four times ransomware gangs failed in 2023. Prevent intrusions.

Ransomware 113

Ransomware Malware Backups Encryption 113

Malwarebytes

MARCH 8, 2023

It seems like LockBit wasn’t content with having us merely crown them as one of the five most serious cyberthreats facing businesses in 2023. The US Department of Health and Human Services (HHS) even released a detailed report on Royal and ALPHV in mid-January 2023 outlining the dual threat to the US health sector.

Ransomware 98

Ransomware Healthcare Government Education 98