The Last Watchdog

DECEMBER 12, 2023

A look back at the cybersecurity landscape in 2023 rings all-too familiar: cyber threats rapidly evolved and scaled up , just as they have, year-to-year, for the past 20 years. Eyal Benishti , CEO, IRONSCALES Benishti Generative AI (GenAI) reshaped cybersecurity in 2023. What should I be most concerned about – and focus on – in 2024?

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Phishing 258

Krebs on Security

JUNE 15, 2024

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider , a cybercrime group suspected of hacking into Twilio , LastPass , DoorDash , Mailchimp , and nearly 130 other organizations over the past two years. man arrested was a SIM-swapper who went by the alias “ Tyler.”

Hacking 344

Hacking Cybercrime Phishing Passwords 344

Krebs on Security

JANUARY 30, 2024

stole at least $800,000 from at least five victims between August 2022 and March 2023. 2022 that an intrusion had exposed a “limited number” of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials. Image credit: Amitai Cohen of Wiz. Twilio disclosed in Aug.

Social Engineering 359

Social Engineering Mobile Cybercrime Passwords 359

Security Affairs

DECEMBER 25, 2024

TraderTraitor activity is often characterized by targeted social engineering directed at multiple employees of the same company simultaneously.” In August 2023, the FBI shared details about the activity of six cryptocurrency wallets operated by North Korea-linked TraderTraitor-affiliated actors. BTC ($308M). .”

Cryptocurrency 126

Cryptocurrency Social Engineering Hacking Cybercrime 126

Security Affairs

MAY 17, 2025

Google warns that the cybercrime group Scattered Spider behind UK retailer attacks is now targeting U.S. The financially motivated group UNC3944 (also known as Scattered Spider , 0ktapus ) is known for social engineering and extortion. They exploit help desks and outsourced IT via social engineering for high-impact attacks.

Retail 69

Retail Social Engineering Cybercrime Financial Services 69

SecureList

JUNE 26, 2023

According to a report by the Barracuda cybersecurity company, in 2021, businesses with fewer than 100 employees experienced far more social engineering attacks than larger ones. In this report, we have analyzed the key threats to small and medium-sized companies in 2022 and 2023, and provided advice on how to stay safe.

Cybercrime 123

Cybercrime Phishing Banking Malware 123

Anton on Security

APRIL 20, 2023

The famous Mandiant 2023 M-Trends (NOT G-Trends, mind you…) report is out, and here are some of the things that I found to be surprising and NOT surprising :-) Mandiant M-Trends 2023 Detection by Source SURPRISING “Mandiant experts note a decrease in the percentage of global intrusions involving ransomware between 2021 and 2022.

Social Engineering 130

Social Engineering Ransomware Cybercrime Cyber Attacks 130

Security Affairs

OCTOBER 11, 2024

OpenAI disrupted 20 cyber and influence operations in 2023, revealing Iran and China-linked actors used ChatGPT for planning ICS attacks. OpenAI announced the disruption of over 20 cyber and influence operations this year, involving Iranian and Chinese state-sponsored hackers.

Malware 139

Malware Social Engineering Engineering Hacking 139

SecureWorld News

FEBRUARY 13, 2025

According to a 2023 study by Sumsub , deepfake fraud attempts increased by 704% between 2022 and 2023. Evolution of social engineering Social engineering exploits human psychology to manipulate individuals into revealing sensitive information or taking harmful actions.

Social Engineering 78

Social Engineering Authentication Identity Theft Engineering 78

Security Affairs

OCTOBER 17, 2023

According to Statista.com, the impact of cybercrime is expected to reach almost $13 trillion this year. With 85% of campaigns targeting victims with phishing emails containing malicious links, another form of a social engineering attack, education and cyber vigiliance remain a high priority. You should always stop and verify.

Social Engineering 140

Social Engineering Ransomware Engineering Phishing 140

SecureList

NOVEMBER 9, 2022

What cyberthreats for business will be the greatest in 2023? The ongoing geopolitical storm brings not only classical cyberthreats for business, but also unpredictable risks and ‘black swans’ The main problem for 2023 will be supply-chain stability and cybersecurity. Threat modeling approaches will be changed in 2023.

Cybersecurity 144

Cybersecurity Cyber Insurance Cybercrime IoT 144

Security Affairs

MARCH 24, 2025

The Cloak ransowmare group has been active since at least 2023 and breached more than one hundred organizations across the years. Initially, the group published screenshots of stolen data as proof of the attack, now the whole archive can be downloaded from the leak page. ” reads a report published by Halcyon.

Ransomware 106

Ransomware Hacking Social Engineering Manufacturing 106

Malwarebytes

FEBRUARY 6, 2024

The report reveals that, awash with money, the number of known Big Game attacks surged by 68% in 2023, thanks to Ransomware-as-a-Service groups like LockBit and ALPHV. And like broader, law-abiding “Business” at large, cybercrime has settled on a collection of tools that work.

Ransomware 119

Ransomware Cybercrime Malware Social Engineering 119

SecureList

NOVEMBER 28, 2022

The list can go on, as cybercriminals are quick to adapt to new social, political, economic, and cultural trends, coming up with new fraudulent schemes to benefit from the situation. The shortage of consoles, relieved slightly in 2022, could start to increase again already in 2023, spurred by the release of the PS VR 2 by Sony.

Education 137

Education Phishing Scams Social Engineering 137

SecureWorld News

FEBRUARY 15, 2024

The malware has been active since 2023, specifically targeting victims in Vietnam and Thailand. The hackers rely heavily on social engineering tactics to distribute the malware.

Social Engineering 97

Social Engineering Mobile Authentication Engineering 97

Security Affairs

NOVEMBER 29, 2023

Cloud identity and access management solutions provider Okta revealed additional threat actor activity linked to the October 2023 breach. Okta provided additional details about the October 2023 breach and revealed additional threat actor malicious activities. On Thursday, October 19, Okta advised customers of a security incident.

Social Engineering 134

Social Engineering Authentication Accountability Engineering 134

Security Through Education

JANUARY 18, 2023

The truth is technology has grown at an exponential rate and so has cybercrime. Cybercrime doesn’t just affect big businesses and national governments. What are some personal cybersecurity concerns for 2023? Business email compromise (BEC) attacks have been predicted to soar in 2023 according to Forbes Advisor.

Cybersecurity 98

Cybersecurity Social Engineering Scams IoT 98

Malwarebytes

JUNE 26, 2025

These jailbroken AIs could generate unrestricted content, including malicious code , phishing emails , and social engineering scripts. The researchers stated: “WormGPT emerged in June 2023 on Hack Forums, a popular underground forum, as an uncensored GenAI tool. WormGPT facilitated black hat activities for threat actors.

Social Engineering 95

Social Engineering Malware Phishing Engineering 95

SecureWorld News

JUNE 10, 2025

Supply chain attacks have surged by a staggering 431% from 2021 to 2023 and continue to rise in 2025. Davis continued, "Threat actors targeting the retail industry largely obtain access to these networks through social engineering or supply chain / third-party compromises.

Cyber Attacks 94

Cyber Attacks Retail Marketing Social Engineering 94

SecureList

MAY 6, 2024

Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. Cryptocurrency phishing saw a 16% year-on-year increase in 2023, with 5.84 million in 2022.

Phishing 134

Phishing Banking Mobile Scams 134

CyberSecurity Insiders

DECEMBER 6, 2022

Netwrix, a cybersecurity vendor that makes data security easy, today released key IT security trends that will affect organizations of all sizes in 2023. Here are five specific trends for 2023 that you need to be aware of: The business of cybercrime will be further professionalized. For more information, visit www.netwrix.com.

Cybersecurity 116

Cybersecurity Cybercrime Social Engineering Firmware 116

CyberSecurity Insiders

JUNE 26, 2023

In recent months, a cybercrime group known as Blacktail has begun to make headlines as they continue to target organizations around the globe. Two of the most popular tools that have been used by the cybercrime group are LockBit 3.0 The content of this post is solely the responsibility of the author. Both LockBit 3.0

Cybercrime 100

Cybercrime Ransomware Social Engineering Phishing 100

SecureWorld News

DECEMBER 14, 2022

Frank Abagnale, one of the world's most respected authorities on forgery, embezzlement, secure documents, cybercrime, and scams—and subject of the 2002 movie Catch Me If You Can — kicked off Vision 2023: Looking Ahead at Cyber Threats , a half-day educational event held live and recorded on December 13th. Secret Service.

CISO 93

CISO Social Engineering Education Cybercrime 93

Security Affairs

DECEMBER 10, 2024

This social engineering scheme has been amplified by targeted phishing, smishing, and vishing activities, with a noticeable increase around the winter holidays. billion (equal to USD 326 million) between 2021 and 2023.

Social Engineering 114

Social Engineering Phishing Banking DNS 114

Jane Frankland

NOVEMBER 20, 2023

My Predictions for Cybersecurity in 2023 were… Technology enables opportunities as fast as it introduces threats. Here are my predictions for 2023. Types of attacks. Types of attacks. Ransomware attacks will surge again, and adversaries will lean on behavioural science and seemingly legitimate ways to trick users.

Cybersecurity 130

Cybersecurity Digital transformation Artificial Intelligence Architecture 130

CSO Magazine

MAY 22, 2023

Cybersecurity activity around business email compromise (BEC) spiked between April 2022 and April 2023, with over 150,000 daily attempts, on average, detected by the Microsoft Microsoft’s Digital Crimes Unit (DCU). Successful BEC attacks cost organizations hundreds of millions of dollars annually.”

Social Engineering 126

Social Engineering Cybercrime Engineering Cybersecurity 126

SecureList

MARCH 25, 2025

Note that for mobile banking malware, we retrospectively revised the 2023 numbers to provide more accurate statistics. We also changed the methodology for PC banking malware by removing obsolete families that no longer use Trojan banker functionality, hence the sharp drop in numbers against 2023. million in 2023.

Phishing 77

Phishing Banking Scams Mobile 77

Malwarebytes

FEBRUARY 4, 2025

The same is true for all text-based social engineering tricks, as AI chat tools can write alluring direct messages for romance scams and craft urgent-sounding texts that can fool people into clicking on links that carry malware. But sometimes the AI pushes back. That could change in 2025.

Artificial Intelligence 142

Artificial Intelligence Small Business Malware Technology 142

The Last Watchdog

JULY 13, 2023

London, July 13, 2023 — Beazley, the leading specialist insurer, today published its latest Risk & Resilience report: Spotlight on: Cyber & Technology Risks 2023. The economic impact of cybercrime on business across the globe continues to reach new levels, with the cost predicted to reach US$10.5

Cyber Risk 189

Cyber Risk Risk Insurance Energy and Utilities 189

Security Affairs

OCTOBER 19, 2023

The Europen Agency for cybersecurity ENISA releases its ENISA Threat Landscape 2023 (ETL) report , which is the annual analysis of the state of the cybersecurity threat landscape. This is the 11th edition of the annual report and analyzes events that took place between July 2022 and July 2023.

Social Engineering 137

Social Engineering Artificial Intelligence Engineering Ransomware 137

Security Affairs

JULY 22, 2024

for suspected involvement in the Scattered Spider cybercrime syndicate. arrested a 17-year-old teenager from Walsall who is suspected to be a member of the Scattered Spider cybercrime group (also known as UNC3944 , 0ktapus ). He is accused of stealing at least $800,000 from five victims between August 2022 and March 2023.

Cybercrime 136

Cybercrime Social Engineering Hacking Scams 136

Identity IQ

DECEMBER 20, 2023

2023: A Year of Record-Breaking Data Breaches IdentityIQ This past year has been an eye-opening year in the realm of digital security. Here, we review the largest data breaches of 2023, analyze the trends, and review proactive measures to navigate the future of security.

Data breaches 90

Data breaches Identity Theft Cybercrime Social Engineering 90

SecureWorld News

MARCH 29, 2024

At its core, this tactic revolves around gaming the trust users put in reputable internet services, including search engines, and the familiarity they have with online advertising per se. A stepping stone to impactful cybercrime This tactic has tangible real-world implications.

Cybercrime 104

Cybercrime Advertising Engineering Antivirus 104

Security Affairs

DECEMBER 17, 2023

CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6 CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6

Data breaches 127

Data breaches Cybercrime Firewall Ransomware 127

SecureList

NOVEMBER 22, 2022

A look back on the year 2022 and what to expect in 2023. This report assesses how accurately we predicted the developments in the financial threats landscape in 2022 and ponder at what to expect in 2023. These are attractive aspects that cybercrime groups will be unable to resist. Analysis of forecasts for 2022.

Cryptocurrency 106

Cryptocurrency Mobile Ransomware Banking 106

Security Affairs

SEPTEMBER 3, 2023

ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.

Social Engineering 129

Social Engineering Spyware Data breaches Surveillance 129

Security Affairs

APRIL 8, 2024

The Health Sector Cybersecurity Coordination Center (HC3) recently observed threat actors using sophisticated social engineering tactics to target IT help desks in the health sector. The attackers aim at gaining initial access to target organizations. However, UNC3944 has yet to claim attacks against the Health sector.

Social Engineering 140

Social Engineering Healthcare Engineering Accountability 140