2023 and Cyber threats - Cyber Security Informer

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Carignan Nicole Carignan , Vice President of Strategic Cyber AI, Darktrace If 2023 was the year of generative AI and 2024 the year of AI agents, 2025 will spotlight multi-agent systems, or agent swarms. The post LW ROUNDTABLE How 2024s cyber threats will transform the security landscape in 2025 first appeared on The Last Watchdog.

Cyber threats

Cyber threats CISO IoT Phishing

Top 15 Exploited Vulnerabilities of 2023

SecureWorld News

NOVEMBER 12, 2024

A new joint Cybersecurity Advisory, co-authored by leading cybersecurity agencies from the United States, Australia, Canada, New Zealand, and the United Kingdom, details the vulnerabilities malicious actors routinely exploited in 2023.

Software

Software Cyber threats Risk Passwords

Microsoft Patch Tuesday, February 2023 Edition

Krebs on Security

FEBRUARY 14, 2023

Redmond flags CVE-2023-23376 as an “Important” elevation of privilege vulnerability in the Windows Common Log File System Driver , which is present in Windows 10 and 11 systems, as well as many server versions of Windows. Microsoft’s security advisories are somewhat sparse with details about the zero-day bugs.

Internet

Internet Internet Cyber threats Malware

Microsoft Patch Tuesday, May 2023 Edition

Krebs on Security

MAY 9, 2023

First up in May’s zero-day flaws is CVE-2023-29336 , which is an “elevation of privilege” weakness in Windows which has a low attack complexity, requires low privileges, and no user interaction. ” Adam Barnett , lead software engineer at Rapid7 , said CVE-2023-24932 deserves a considerably higher threat score.

Malware

Malware Software Internet Internet

Kaspersky’s New Report Reveals the Top Cyber Threats for SMBs in 2023

Tech Republic Security

JUNE 29, 2023

A new report from Kaspersky reveals the top cyber threats for SMBs in 2023. The post Kaspersky’s New Report Reveals the Top Cyber Threats for SMBs in 2023 appeared first on TechRepublic. Read more about it and how to protect organizations from it.

Cyber threats

Cyber threats Scams Phishing Cybercrime

Microsoft Patch Tuesday, June 2023 Edition

Krebs on Security

JUNE 13, 2023

” Top of the list on that front is CVE-2023-29357 , which is a “critical” bug in Microsoft SharePoint Server that can be exploited by an unauthenticated attacker on the same network. This SharePoint flaw earned a CVSS rating of 9.8 is the most dangerous). This SharePoint flaw earned a CVSS rating of 9.8

Social Engineering

Social Engineering System Administration Authentication Internet

Microsoft Patch Tuesday, March 2023 Edition

Krebs on Security

MARCH 15, 2023

The Outlook vulnerability ( CVE-2023-23397 ) affects all versions of Microsoft Outlook from 2013 to the newest. While CVE-2023-23397 is labeled as an “Elevation of Privilege” vulnerability, that label doesn’t accurately reflect its severity, said Kevin Breen , director of cyber threat research at Immersive Labs.

Passwords

Passwords Cyber threats Authentication Internet

Zero-Day Exploits Surge in 2023, Cisco, Fortinet Vulnerabilities Targeted

Security Boulevard

NOVEMBER 15, 2024

The post Zero-Day Exploits Surge in 2023, Cisco, Fortinet Vulnerabilities Targeted appeared first on Security Boulevard.

Cybersecurity

Cybersecurity Cyber threats

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Krebs on Security

DECEMBER 19, 2024

Cyber threat analysts at Silent Push said they recently received reports from a partner organization that identified an aggressive scanning effort against their website using an Internet address previously associated with a campaign by FIN7 , a notorious Russia-based hacking group. According to an August 2023 report (PDF) from the U.S.

Hacking

Hacking Cybercrime Advertising Data breaches

Securing Tomorrow: Cybersecurity Review 2023 & Forecasting 2024 Threats – A Free Webinar With Joseph Steinberg and Dror Liwer

Joseph Steinberg

JANUARY 30, 2024

The esteemed expert panel for the webinar will consist of Dror Liwer, Co-Founder of Coro, and Joseph Steinberg, Cybersecurity, Privacy and Artificial Intelligence (AI) Expert, who will delve into the intricacies of cyber threats, offering insights into evolving attack vectors, vulnerabilities, and the changing tactics employed by cyber adversaries.

Artificial Intelligence

Artificial Intelligence Cybersecurity Cyber threats Technology

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 1)

The Last Watchdog

DECEMBER 12, 2023

A look back at the cybersecurity landscape in 2023 rings all-too familiar: cyber threats rapidly evolved and scaled up , just as they have, year-to-year, for the past 20 years. Eyal Benishti , CEO, IRONSCALES Benishti Generative AI (GenAI) reshaped cybersecurity in 2023. Here is part one of three groupings.

Cybersecurity

Cybersecurity Social Engineering Cyber threats Software

GUEST ESSAY: The many channels law enforcement pursues to mitigate cyber threats

The Last Watchdog

NOVEMBER 7, 2023

Throughout 2023, we’ve witnessed numerous significant cyber incidents. Related: The Golden Age of cyber espionage We have also seen ransomware outbreaks at MGM and Caesar’s Casino , causing losses in the millions of dollars and targeted assaults on the healthcare sector, affecting over 11 million patients.

Cyber threats

Cyber threats Cybercrime Internet Internet

AI Cybersecurity Firm Raises $100 Million to Strengthen National Security

eSecurity Planet

FEBRUARY 18, 2025

Dream, an AI cybersecurity startup, has raised $100 million in a Series B funding round led by Bain Capital Ventures to bolster its mission of defending nations and critical infrastructure from cyber threats. Kurz, a former Austrian prime minister, co-founded Dream in 2023. led to widespread fuel shortages across the East Coast.

Cybersecurity

Cybersecurity Cyber threats Government Data privacy

News Alert: CybSafe CEO Oz Alashe MBE recognized as “Security Industry Innovator” for 2023

The Last Watchdog

JULY 11, 2023

Boston, July 7, 2023 — CybSafe, the human risk management platform, has today announced CEO Oz Alashe MBE has been named as a SecurityInfoWatch.com , Security Business and Security Technology Executive magazines’ 2023 Security Industry Innovator Award winner.

Cyber Risk

Cyber Risk Cyber threats Risk Technology

News Alert: Perception Point reports rates of ‘BEC,’ phishing attacks climb in the first half of 2023

The Last Watchdog

JULY 27, 2023

Tel Aviv, Israel, July 27, 2023 — Perception Point , a leading provider of advanced threat prevention across digital communication channels, today published a new report analyzing global cyberattack trends in H1 2023 amidst the paradigm shift brought about by advances in generative AI (GenAI) capabilities.

Phishing

Phishing Social Engineering Engineering Media

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

As small businesses increasingly depend on digital technologies to operate and grow, the risks associated with cyber threats also escalate. The cost of ignoring such measures can be substantial, as noted in IBM’s 2023 Cost of a Data Breach Report, which found the average impact of a data breach on small businesses can exceed $3.31

Small Business

Small Business Data breaches Backups Passwords

Silent Ransom Group targeting law firms, the FBI warns

Security Affairs

MAY 24, 2025

“The cyber threat actor Silent Ransom Group (SRG), also known as Luna Moth, Chatty Spider, and UNC3753, is targeting law firms using information technology (IT) themed social engineering calls, and callback phishing emails, to gain remote access to systems or devices and steal sensitive data to extort the victims.”

Social Engineering

Social Engineering Antivirus Phishing Authentication

Amazon's Latest Data Breach a Ripple Effect of MOVEit

SecureWorld News

NOVEMBER 13, 2024

The MOVEit vulnerability (CVE-2023-34362), first exploited in May 2023, allowed unauthenticated attackers to gain unauthorized access to vulnerable systems. The MOVEit data theft and extortion attacks in May 2023 impacted a significant number of individuals and organizations globally.

Data breaches

Data breaches Identity Theft Education Software

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

The Akira ransomware attack reveals the risks of overlooked IoT devices, evolving cyber threats, and EDR limitations. 1] Akira was subsequently able to encrypt files across the victims network.” ” reads the report published by the S-RM team. “Preventing and remediating novel attacks like this one can be challenging.

Ransomware

Ransomware IoT Encryption Passwords

Cryptojacking via CVE-2023-22527: Dissecting a Full-Scale Cryptomining Ecosystem

Trend Micro

AUGUST 27, 2024

We provide a technical analysis on how CVE-2023-22527 can be exploited by malicious actors for cryptojacking attacks that can spread across the victim’s system.

Cyber threats

Cyber threats Malware

How threat actors can use generative artificial intelligence?

Security Affairs

DECEMBER 1, 2024

From generating deepfakes to enhancing phishing campaigns, GAI is evolving into a tool for large-scale cyber offenses GAI has captured the attention of researchers and investors for its transformative potential across industries. Unfortunately, its misuse by malicious actors is altering the cyber threat landscape.

Artificial Intelligence

Artificial Intelligence Phishing Media Cybercrime

GUEST ESSAY: Four essential strategies to bolster cyber resilience in critical infrastructure

The Last Watchdog

MARCH 10, 2025

In 2023, victims reported nearly 900,000 cybercrime complaints to the FBI. House Committee on Homeland Security , attacks on critical infrastructure organizations increased 30% in 2023. I-Cross-functional collaboration Cyber resilience isnt possible when teams operate in silos. Altogether, losses eclipsed $12.5

Energy and Utilities

Energy and Utilities Cyber threats Financial Services Government

The $10 Cyber Threat Responsible for the Biggest Breaches of 2024

The Hacker News

JANUARY 16, 2025

You can tell the story of the current state of stolen credential-based attacks in three numbers: Stolen credentials were the #1 attacker action in 2023/24, and the breach vector for 80% of web app attacks. Source: Verizon). Cybersecurity budgets grew again in 2024, with organizations now spending almost $1,100 per user (Source: Forrester).

Cyber threats

Cyber threats Cybersecurity

Report Shows Ransomware Has Grown 41% for Construction Industry

Digital Shadows

NOVEMBER 12, 2024

Top MITRE Technique: Spearphishing The construction sector is no stranger to phishing attacks, which topped the list of initial access techniques between October 1, 2023, and September 30, 2024.

Ransomware

Ransomware Phishing Cyber threats Malware

RSAC Fireside Chat: How timely intel from the cyber underground improves counter measures

The Last Watchdog

APRIL 20, 2023

As RSA Conference 2023 gets underway next week at San Francisco’s Moscone Center, advanced ways to gather and infuse cyber threat intelligence, or CTI , into fast-evolving network defenses is in the spotlight. That said, there are also many opportunities for companies to glean and leverage helpful intel from the Dark Web.

Cyber threats

Cyber threats DDOS Cyber Attacks Internet

Artificial Intelligence in Cybersecurity: Boon or Bane? – A Free Webinar With Joseph Steinberg, Author of Cybersecurity For Dummies

Joseph Steinberg

MARCH 13, 2023

As pretty much every professional knows, the cyber-threat landscape is constantly and rapidly evolving as hackers discover new techniques to breach organizations. This webinar will take place on Tuesday, March 21, 2023, at 1:00 PM US Eastern Daylight Savings Time (10:00 AM US Pacific = 5:00 PM UTC/GMT).

Artificial Intelligence

Artificial Intelligence Cybersecurity Cybercrime Cyber threats

AI Outsmarts 'Elite' Red Teams in New Era of Phishing, Cyber Defense

SecureWorld News

APRIL 7, 2025

As these attacks become increasingly personalized and effective, it is crucial for organizations worldwide to understand the profound impact of AI's role in cyber threats. This understanding is vital for developing strategies to counteract these advanced threats and protect sensitive information.

Phishing

Phishing Artificial Intelligence Cyber threats Cybersecurity

86 million AT&T customer records reportedly up for sale on the dark web

Zero Day

JUNE 6, 2025

Affecting "nearly all AT&T cellular customers," the company said at the time that the data included phone numbers and certain phone call data stemming from May 1, 2022, to October 31, 2022, and on January 2, 2023. At that time, the carrier said it didn't believe the data was publicly available.

Password Management

Password Management Passwords Software Artificial Intelligence

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

SecureWorld News

JUNE 9, 2025

Most aviation processes are heavily digitized, and in the wake of new cyber threats, airlines and the broader sector must prioritize cybersecurity more than ever before. In the first half of 2023 alone, aviation cyberattacks surged by 24% worldwide, fueling disruptions from flight-planning systems to passenger services.

Cybersecurity

Cybersecurity Social Engineering Computers and Electronics Risk

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

Jane Frankland

MAY 3, 2025

Allegedly orchestrated by the same group known as Scattered Spider, these attacks highlight the significant challenges even the most respected and established brands face in defending against modern cyber threats. Then, the focus of cyber attacks on retailers, and what lessons must be learned by business leaders and customers.

Cyber Attacks

Cyber Attacks Retail Cyber threats Backups

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

In October 2023, Danowski detailed how i-SOON became embroiled in a software development contract dispute when it was sued by a competing Chinese cybersecurity company called Chengdu 404. The ultimate objective is, not ‘control’ of cyberspace, but control of information, a vision that dominates China’s cyber operations.”

Government

Government Hacking Cyber threats Mobile

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

The Last Watchdog

MARCH 24, 2025

24, 2025, CyberNewswire – – INE Security , a global provider of cybersecurity training and certification, today announced its initiative to spotlight the increasing cyber threats targeting healthcare institutions. Recent reports show healthcare has endured a record wave of cyber breaches. Cary, NC, Mar.

Healthcare

Healthcare Penetration Testing Education Cyber threats

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

Security Affairs

APRIL 30, 2025

Finally, the team started using Team Underground ransomware in July 2023 in a completely similar manner.” . “After March 2022, attacks using Cuba ransomware were entirely replaced by Industrial Spy , which appears to be a continuation of the former.

Encryption

Encryption Ransomware Malware Phishing

Cybercrime Soars: FBI's 2024 Report Reveals $16.6 Billion in Losses

SecureWorld News

MAY 14, 2025

billion in reported losses, a 33% increase from 2023, underscoring the escalating threat landscape faced by individuals and organizations alike. Critical infrastructure under siege: The healthcare and public health sector was the most targeted by ransomware attackers in 2023. The report highlights a staggering $16.6

Cybercrime

Cybercrime Scams Internet Internet

News Alert: Criminal IP unveils innovative fraud detection data products on Snowflake Marketplace

The Last Watchdog

JUNE 10, 2024

June 10, 2024, CyberNewsWire — AI SPERA, a leader in Cyber Threat Intelligence (CTI) solutions, announced that it has started selling its paid threat detection data from its CTI search engine ‘ Criminal IP ‘ on the Snowflake Marketplace. Torrance, Calif., About AI Spera.

Cyber threats

Cyber threats Threat Detection Engineering Media

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency

Cryptocurrency Hacking Malware Data breaches

Best WordPress Plugins for Cybersecurity 2025

IT Security Guru

MARCH 14, 2025

Cybercrime is a growing problem, with 39% of UK businesses experiencing cyber attacks in 2023. Using security plugins can help reduce risks and keep your site safe from threats and are essential for any wordpress site, and even more so if your site has personal customer data on it.

Cybersecurity

Cybersecurity Firewall Cyber Attacks Passwords

Apple quietly makes running Linux containers easier on Macs

Zero Day

JUNE 13, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Energy and Utilities Artificial Intelligence

Are Cybersecurity Jobs in High Demand?

Hacker's King

OCTOBER 19, 2024

As cyber threats escalate, the demand for skilled professionals in cybersecurity is skyrocketing. You may also want to read about: Cybersecurity vs Software Engineering in 2024 The Global Rise of Cyber Threats In the past decade, cyber threats have grown in frequency, complexity, and impact.

Cybersecurity

Cybersecurity Healthcare Cyber threats Government

Report Unveils Cybersecurity Leaks in U.S. Drinking Water Systems

SecureWorld News

NOVEMBER 18, 2024

In 2023, the U.S. Ken Dunham, Cyber Threat Director at Qualys Threat Research Unit, opined on the issue: "U.S. A New Jersey-based utility, American Water , which supplies water to more than 14 million people, reported a cyberattack in an SEC filing on October 3, 2024.

Cybersecurity

Cybersecurity Risk Penetration Testing Technology

GUEST ESSAY: Everything you should know about the cybersecurity vulnerabilities of AI chatbots

The Last Watchdog

FEBRUARY 20, 2024

billion work hours in 2023 and helped raise customer satisfaction to 69% for $0.50 Machine learning helps AI chatbots adapt to and prevent new cyber threats. This helps them improve their performance over time by gaining data from interactions. In 2022, 88% of users relied on chatbots when interacting with businesses.

Cybersecurity

Cybersecurity Penetration Testing Authentication Social Engineering

The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning

Security Affairs

APRIL 28, 2025

After Fitzpatrick’s arrest in March 2023, the forum’s administration changed hands multiple times, including to the hacking group ShinyHunters and later to an individual known as “ Baphomet.” They warned users that emerging clones are untrustworthy, likely honeypots set up to lure users.

Risk

Risk Hacking Cybercrime Scams

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

Digital Shadows

JANUARY 22, 2025

Were thrilled to unveil our latest threat landscape report for the finance and insurance sector, offering in-depth analysis of the evolving cyber threats facing this industry.

Insurance

Insurance Phishing Social Engineering Engineering

How global threat actors are weaponizing AI now, according to OpenAI

Zero Day

JUNE 6, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Passwords

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Top 15 Exploited Vulnerabilities of 2023

Trending Sources

Microsoft Patch Tuesday, February 2023 Edition

Microsoft Patch Tuesday, May 2023 Edition

Kaspersky’s New Report Reveals the Top Cyber Threats for SMBs in 2023

Microsoft Patch Tuesday, June 2023 Edition

Microsoft Patch Tuesday, March 2023 Edition

Zero-Day Exploits Surge in 2023, Cisco, Fortinet Vulnerabilities Targeted

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Securing Tomorrow: Cybersecurity Review 2023 & Forecasting 2024 Threats – A Free Webinar With Joseph Steinberg and Dror Liwer

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 1)

GUEST ESSAY: The many channels law enforcement pursues to mitigate cyber threats

AI Cybersecurity Firm Raises $100 Million to Strengthen National Security

News Alert: CybSafe CEO Oz Alashe MBE recognized as “Security Industry Innovator” for 2023

News Alert: Perception Point reports rates of ‘BEC,’ phishing attacks climb in the first half of 2023

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

Silent Ransom Group targeting law firms, the FBI warns

Amazon's Latest Data Breach a Ripple Effect of MOVEit

Akira ransomware gang used an unsecured webcam to bypass EDR

Cryptojacking via CVE-2023-22527: Dissecting a Full-Scale Cryptomining Ecosystem

How threat actors can use generative artificial intelligence?

GUEST ESSAY: Four essential strategies to bolster cyber resilience in critical infrastructure

The $10 Cyber Threat Responsible for the Biggest Breaches of 2024

Report Shows Ransomware Has Grown 41% for Construction Industry

RSAC Fireside Chat: How timely intel from the cyber underground improves counter measures

Artificial Intelligence in Cybersecurity: Boon or Bane? – A Free Webinar With Joseph Steinberg, Author of Cybersecurity For Dummies

AI Outsmarts 'Elite' Red Teams in New Era of Phishing, Cyber Defense

86 million AT&T customer records reportedly up for sale on the dark web

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

New Leak Shows Business Side of China’s APT Menace

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

Cybercrime Soars: FBI's 2024 Report Reveals $16.6 Billion in Losses

News Alert: Criminal IP unveils innovative fraud detection data products on Snowflake Marketplace

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Best WordPress Plugins for Cybersecurity 2025

Apple quietly makes running Linux containers easier on Macs

Are Cybersecurity Jobs in High Demand?

Report Unveils Cybersecurity Leaks in U.S. Drinking Water Systems

GUEST ESSAY: Everything you should know about the cybersecurity vulnerabilities of AI chatbots

The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

How global threat actors are weaponizing AI now, according to OpenAI

Stay Connected