2023, Cyber threats and Ransomware - Cyber Security Informer

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

By correlating this data with programs, certifications and threats, businesses can manage their defenses with full context. Deepfake scams will escalate, with threat actors using AI to create convincing impersonations of executives, risking personal and corporate brands. This empowers them to proactively prioritize what matters most.

Cyber threats

Cyber threats CISO IoT Phishing

Top 15 Exploited Vulnerabilities of 2023

SecureWorld News

NOVEMBER 12, 2024

A new joint Cybersecurity Advisory, co-authored by leading cybersecurity agencies from the United States, Australia, Canada, New Zealand, and the United Kingdom, details the vulnerabilities malicious actors routinely exploited in 2023.

Software

Software Cyber threats Risk Passwords

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. Cybersecurity researchers at S-RM team discovered a novel attack technique used by the Akira ransomware gang. Realizing EDR was active, they pivoted by scanning the network for vulnerable devices.

Ransomware

Ransomware IoT Encryption Passwords

Microsoft Patch Tuesday, February 2023 Edition

Krebs on Security

FEBRUARY 14, 2023

Redmond flags CVE-2023-23376 as an “Important” elevation of privilege vulnerability in the Windows Common Log File System Driver , which is present in Windows 10 and 11 systems, as well as many server versions of Windows. This is likely being chained with a remote code execution bug to spread malware or ransomware.

Internet

Internet Internet Cyber threats Malware

Microsoft Patch Tuesday, May 2023 Edition

Krebs on Security

MAY 9, 2023

First up in May’s zero-day flaws is CVE-2023-29336 , which is an “elevation of privilege” weakness in Windows which has a low attack complexity, requires low privileges, and no user interaction. ” Adam Barnett , lead software engineer at Rapid7 , said CVE-2023-24932 deserves a considerably higher threat score.

Malware

Malware Software Internet Internet

Microsoft Patch Tuesday, June 2023 Edition

Krebs on Security

JUNE 13, 2023

” Top of the list on that front is CVE-2023-29357 , which is a “critical” bug in Microsoft SharePoint Server that can be exploited by an unauthenticated attacker on the same network. This SharePoint flaw earned a CVSS rating of 9.8 is the most dangerous).

Social Engineering

Social Engineering System Administration Authentication Internet

Report Shows Ransomware Has Grown 41% for Construction Industry

Digital Shadows

NOVEMBER 12, 2024

Top MITRE Technique: Spearphishing The construction sector is no stranger to phishing attacks, which topped the list of initial access techniques between October 1, 2023, and September 30, 2024. This is likely driven by the vast amounts of sensitive data that organizations hold and their critical need to maintain operational continuity.

Ransomware

Ransomware Phishing Cyber threats Malware

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 1)

The Last Watchdog

DECEMBER 12, 2023

A look back at the cybersecurity landscape in 2023 rings all-too familiar: cyber threats rapidly evolved and scaled up , just as they have, year-to-year, for the past 20 years. Eyal Benishti , CEO, IRONSCALES Benishti Generative AI (GenAI) reshaped cybersecurity in 2023. Here is part one of three groupings.

Cybersecurity

Cybersecurity Social Engineering Cyber threats Phishing

GUEST ESSAY: The many channels law enforcement pursues to mitigate cyber threats

The Last Watchdog

NOVEMBER 7, 2023

Throughout 2023, we’ve witnessed numerous significant cyber incidents. Related: The Golden Age of cyber espionage We have also seen ransomware outbreaks at MGM and Caesar’s Casino , causing losses in the millions of dollars and targeted assaults on the healthcare sector, affecting over 11 million patients.

Cyber threats

Cyber threats Cybercrime Internet Internet

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

As small businesses increasingly depend on digital technologies to operate and grow, the risks associated with cyber threats also escalate. The cost of ignoring such measures can be substantial, as noted in IBM’s 2023 Cost of a Data Breach Report, which found the average impact of a data breach on small businesses can exceed $3.31

Small Business

Small Business Data breaches Backups Passwords

AI Cybersecurity Firm Raises $100 Million to Strengthen National Security

eSecurity Planet

FEBRUARY 18, 2025

Dream, an AI cybersecurity startup, has raised $100 million in a Series B funding round led by Bain Capital Ventures to bolster its mission of defending nations and critical infrastructure from cyber threats. Kurz, a former Austrian prime minister, co-founded Dream in 2023. led to widespread fuel shortages across the East Coast.

Cybersecurity

Cybersecurity Cyber threats Government Data privacy

Amazon's Latest Data Breach a Ripple Effect of MOVEit

SecureWorld News

NOVEMBER 13, 2024

The MOVEit vulnerability (CVE-2023-34362), first exploited in May 2023, allowed unauthenticated attackers to gain unauthorized access to vulnerable systems. The MOVEit data theft and extortion attacks in May 2023 impacted a significant number of individuals and organizations globally. Public advisories: The U.S.

Data breaches

Data breaches Identity Theft Education Software

Silent Ransom Group targeting law firms, the FBI warns

Security Affairs

MAY 24, 2025

Linked to BazarCall campaigns, the group previously enabled Ryuk and Conti ransomware attacks. “While SRG has historically victimized companies in many sectors, starting Spring 2023, the group has consistently targeted US-based law firms, likely due to the highly sensitive nature of legal industry data.”

Social Engineering

Social Engineering Antivirus Phishing Authentication

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

SecureWorld News

JUNE 9, 2025

Most aviation processes are heavily digitized, and in the wake of new cyber threats, airlines and the broader sector must prioritize cybersecurity more than ever before. In the first half of 2023 alone, aviation cyberattacks surged by 24% worldwide, fueling disruptions from flight-planning systems to passenger services.

Cybersecurity

Cybersecurity Social Engineering Computers and Electronics Risk

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

Security Affairs

APRIL 30, 2025

“Analysis of the team’s infrastructures shows that LARVA-290, the individual who obtained intrusion servers for and conducted numerous ransomware attacks, continues to play a critical IT admin role within the Nebulous Mantis team and in RomCom attacks.” .” reads the report published by PRODAFT.

Encryption

Encryption Ransomware Malware Phishing

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency

Cryptocurrency Hacking Malware Data breaches

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

Jane Frankland

MAY 3, 2025

Allegedly orchestrated by the same group known as Scattered Spider, these attacks highlight the significant challenges even the most respected and established brands face in defending against modern cyber threats. Then, the focus of cyber attacks on retailers, and what lessons must be learned by business leaders and customers.

Cyber Attacks

Cyber Attacks Retail Cyber threats Backups

86 million AT&T customer records reportedly up for sale on the dark web

Zero Day

JUNE 6, 2025

Affecting "nearly all AT&T cellular customers," the company said at the time that the data included phone numbers and certain phone call data stemming from May 1, 2022, to October 31, 2022, and on January 2, 2023. At that time, the carrier said it didn't believe the data was publicly available.

Password Management

Password Management Passwords Identity Theft Software

Cybercrime Soars: FBI's 2024 Report Reveals $16.6 Billion in Losses

SecureWorld News

MAY 14, 2025

billion in reported losses, a 33% increase from 2023, underscoring the escalating threat landscape faced by individuals and organizations alike. Critical infrastructure under siege: The healthcare and public health sector was the most targeted by ransomware attackers in 2023. The report highlights a staggering $16.6

Cybercrime

Cybercrime Scams Cryptocurrency Internet

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

The Last Watchdog

MARCH 24, 2025

24, 2025, CyberNewswire – – INE Security , a global provider of cybersecurity training and certification, today announced its initiative to spotlight the increasing cyber threats targeting healthcare institutions. Recent reports show healthcare has endured a record wave of cyber breaches. Cary, NC, Mar.

Healthcare

Healthcare Penetration Testing Education Cyber threats

Why SMS two-factor authentication codes aren't safe and what to use instead

Zero Day

JUNE 17, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Authentication

Authentication Password Management Small Business Passwords

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

Digital Shadows

JANUARY 22, 2025

Were thrilled to unveil our latest threat landscape report for the finance and insurance sector, offering in-depth analysis of the evolving cyber threats facing this industry. These methods enable unauthorized access, credential theft, and ransomware deployment, severely disrupting operations and eroding customer trust.

Insurance

Insurance Phishing Social Engineering Engineering

Apple quietly makes running Linux containers easier on Macs

Zero Day

JUNE 13, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Energy and Utilities Artificial Intelligence

6 Breach and Attack Simulation Use Cases That Enhance Your Cyber Resilience

NetSpi Executives

OCTOBER 22, 2024

To better understand why this is a booming market, it is important to recognize breach and attack simulation use cases , and how tools like NetSPI Breach and Attack Simulation can help enhance security posture, promote continuous threat exposure management (CTEM), and support executives with cybersecurity strategy and planning.

Marketing

Marketing Ransomware Penetration Testing Cyber threats

Are Cybersecurity Jobs in High Demand?

Hacker's King

OCTOBER 19, 2024

As cyber threats escalate, the demand for skilled professionals in cybersecurity is skyrocketing. You may also want to read about: Cybersecurity vs Software Engineering in 2024 The Global Rise of Cyber Threats In the past decade, cyber threats have grown in frequency, complexity, and impact.

Cybersecurity

Cybersecurity Healthcare Cyber threats Government

Empowering Boards for Cybersecurity Incidents

SecureWorld News

JANUARY 12, 2025

During the Okta breach of 2023 , for example, organizations were reminded of the importance of proactive communication to mitigate reputational damage. Tabletop Exercises and Role-Specific Guidance: Regularly conduct tabletop exercises that simulate different cyber incidents, focusing on the board's decision-making process.

Cybersecurity

Cybersecurity Data breaches Ransomware Government

Racing the Clock: Outpacing Accelerating Attacks

Digital Shadows

JANUARY 27, 2025

Key Findings 2024 was the year cyber threats got quicker. Cyber attackers really picked up the pace, executing faster, more efficient breaches that pushed traditional defenses to their limits. We found that the average breakout time was 48 minutes22% faster than in 2023, based on comparisons with external industry reporting.

Scams

Scams Ransomware Accountability Social Engineering

How global threat actors are weaponizing AI now, according to OpenAI

Zero Day

JUNE 6, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Passwords

Preparation: The Real Secret to Saving Money in Cybersecurity

Approachable Cyber Threats

MAY 26, 2025

Cyber threats dont care how big or small your business is theyre always lurking. million , a 10% jump from 2023. This problem only grows further when the primary motivation for attacks were financially motivated, with 62% of breaches being due to ransomware or extortion. What is the Business Risk of a Breach?

Cybersecurity

Cybersecurity Small Business Data breaches Risk

Here's why network infrastructure is vital to maximizing your company's AI adoption

Zero Day

JUNE 14, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Digital transformation

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Security Boulevard

FEBRUARY 14, 2025

And get the latest on ransomware trends and on cybercrime legislation and prevention! 6 - Report: Global ransomware attacks up in 2024 Ransomware attacks grew 15% worldwide last year, compared with 2023, as ransomware gangs show a growing interest not just in encrypting data but in stealing it to further monetize it.

Banking

Banking Cybercrime Cybersecurity Ransomware

Your Android phone just got a big upgrade for free - these Pixel models included

Zero Day

JUNE 17, 2025

Also: 'End of 10' offers hope and support to Windows 10 users who can't upgrade their PCs This is the earliest Google has launched a major Android release in a while (for comparison, Android 15 was released on Oct. 15, 2024, and Android 14 was released on Oct. Here's a look at four of the biggest upgrades in Android 16.

Password Management

Password Management Small Business Artificial Intelligence Software

Forget Ray-Bans: The $499 Meta Oakley smart glasses are better in almost every way

Zero Day

JUNE 20, 2025

EssilorLuxottica reported in February that two million pairs of the Meta Ray-Bans have been sold since their October 2023 launch. Meta unveiled its collaboration with Ray-Ban for smart glasses two years ago , and it has been a smashing success since they launched.

Password Management

Password Management Small Business Artificial Intelligence Software

I upgraded my Pixel 9 Pro to Android 16 - here's what I love (and what's still missing)

Zero Day

JUNE 20, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Artificial Intelligence Software

Facebook's new passkey support could let you ditch your password once and for all

Zero Day

JUNE 19, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Passwords

Passwords Password Management Small Business Mobile

Apple Intelligence is getting more languages - and AI-powered translation

Zero Day

JUNE 9, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Digital transformation

Yet another European government is ditching Microsoft for Linux - here's why

Zero Day

JUNE 16, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Government

Government Password Management Small Business Software

ChatGPT can now connect to MCP servers - here's how, and what to watch for

Zero Day

JUNE 17, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Digital transformation

Your Android phone just got a major feature upgrade for free - including these Pixel models

Zero Day

JUNE 13, 2025

Also: Why Denmark is dumping Microsoft Office and Windows for LibreOffice and Linux This is the earliest Google has launched a major Android release in a while (for comparison, Android 15 was released on Oct. 15, 2024, and Android 14 was released on Oct. Here's a look at four of the biggest upgrades in Android 16.

Password Management

Password Management Small Business Artificial Intelligence Software

Is this the end of Intel-based Macs? Apple confirms bittersweet update policy for MacOS

Zero Day

JUNE 9, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Artificial Intelligence Digital transformation

These XR glasses gave me a 200-inch screen to work with - and have replaced my monitors

Zero Day

JUNE 18, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Energy and Utilities Software

I found a Linux distro that combines the best parts of other operating systems (and it works)

Zero Day

JUNE 13, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Energy and Utilities Artificial Intelligence

Is your Pixel glitchy after Android 16? Here's the best workaround we've found so far

Zero Day

JUNE 17, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Artificial Intelligence Digital transformation

Heard about the 16 billion passwords leak? Here are the facts and how to protect yourself

Zero Day

JUNE 20, 2025

Attackers may deploy ransomware to blackmail their victims into paying up to regain their access to the network. Also: FBI warns of public 'juice jacking' charging stations. How to stay protected The majority of data breaches are financially motivated.

Passwords

Passwords Data breaches Password Management Identity Theft

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Top 15 Exploited Vulnerabilities of 2023

Trending Sources

Akira ransomware gang used an unsecured webcam to bypass EDR

Microsoft Patch Tuesday, February 2023 Edition

Microsoft Patch Tuesday, May 2023 Edition

Microsoft Patch Tuesday, June 2023 Edition

Report Shows Ransomware Has Grown 41% for Construction Industry

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 1)

GUEST ESSAY: The many channels law enforcement pursues to mitigate cyber threats

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

AI Cybersecurity Firm Raises $100 Million to Strengthen National Security

Amazon's Latest Data Breach a Ripple Effect of MOVEit

Silent Ransom Group targeting law firms, the FBI warns

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

86 million AT&T customer records reportedly up for sale on the dark web

Cybercrime Soars: FBI's 2024 Report Reveals $16.6 Billion in Losses

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

Why SMS two-factor authentication codes aren't safe and what to use instead

Report Finds 50% of Scattered Spider Phishing Domains Targeted Finance & Insurance

Apple quietly makes running Linux containers easier on Macs

6 Breach and Attack Simulation Use Cases That Enhance Your Cyber Resilience

Are Cybersecurity Jobs in High Demand?

Empowering Boards for Cybersecurity Incidents

Racing the Clock: Outpacing Accelerating Attacks

How global threat actors are weaponizing AI now, according to OpenAI

Preparation: The Real Secret to Saving Money in Cybersecurity

Here's why network infrastructure is vital to maximizing your company's AI adoption

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Your Android phone just got a big upgrade for free - these Pixel models included

Forget Ray-Bans: The $499 Meta Oakley smart glasses are better in almost every way

I upgraded my Pixel 9 Pro to Android 16 - here's what I love (and what's still missing)

Facebook's new passkey support could let you ditch your password once and for all

Apple Intelligence is getting more languages - and AI-powered translation

Yet another European government is ditching Microsoft for Linux - here's why

ChatGPT can now connect to MCP servers - here's how, and what to watch for

Your Android phone just got a major feature upgrade for free - including these Pixel models

Is this the end of Intel-based Macs? Apple confirms bittersweet update policy for MacOS

These XR glasses gave me a 200-inch screen to work with - and have replaced my monitors

I found a Linux distro that combines the best parts of other operating systems (and it works)

Is your Pixel glitchy after Android 16? Here's the best workaround we've found so far

Heard about the 16 billion passwords leak? Here are the facts and how to protect yourself

Stay Connected