Krebs on Security

FEBRUARY 14, 2023

Redmond flags CVE-2023-23376 as an “Important” elevation of privilege vulnerability in the Windows Common Log File System Driver , which is present in Windows 10 and 11 systems, as well as many server versions of Windows. This is likely being chained with a remote code execution bug to spread malware or ransomware.

Internet 61

Internet Internet Cyber threats Malware 61

Security Affairs

MARCH 8, 2025

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. Cybersecurity researchers at S-RM team discovered a novel attack technique used by the Akira ransomware gang. Realizing EDR was active, they pivoted by scanning the network for vulnerable devices.

Ransomware 131

Ransomware IoT Encryption Passwords 131

SecureWorld News

JUNE 9, 2025

Most aviation processes are heavily digitized, and in the wake of new cyber threats, airlines and the broader sector must prioritize cybersecurity more than ever before. In the first half of 2023 alone, aviation cyberattacks surged by 24% worldwide, fueling disruptions from flight-planning systems to passenger services.

Cybersecurity 117

Cybersecurity Social Engineering Computers and Electronics Risk 117

Security Affairs

NOVEMBER 21, 2024

Mexico is investigating a ransomware attack targeting its legal affairs office, as confirmed by the president amidst growing cybersecurity concerns. Mexico’s president announced the government is investigating an alleged ransomware hack that targeted the administration’s legal affairs office. Knight, also known as Cyclops 2.0,

Government 144

Government Hacking Ransomware Insurance 144

Security Affairs

DECEMBER 26, 2024

A ransomware attack on Pittsburgh Regional Transit (PRT) was the root cause of the agency’s service disruptions. On December 23, 2024, Pittsburgh Regional Transit (PRT) announced it was actively responding to a ransomware attack that was first detected on Thursday, December 19.

Ransomware 123

Ransomware Cyber Attacks Hacking Cybersecurity 123

SecureWorld News

NOVEMBER 14, 2024

Ransomware attacks on healthcare organizations have sharply increased in 2024, as shown by recent research from Safety Detectives. Compared to 2023, healthcare providers are facing a higher frequency of ransomware incidents, impacting their ability to deliver essential services and protect sensitive patient data.

Healthcare 119

Healthcare Ransomware Identity Theft Data breaches 119

The Last Watchdog

DECEMBER 12, 2023

A look back at the cybersecurity landscape in 2023 rings all-too familiar: cyber threats rapidly evolved and scaled up , just as they have, year-to-year, for the past 20 years. Eyal Benishti , CEO, IRONSCALES Benishti Generative AI (GenAI) reshaped cybersecurity in 2023. Here is part one of three groupings. This is folly.

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Software 258

Security Affairs

JUNE 6, 2025

A joint advisory from the US and Australian authorities states that Play ransomware has hit approximately 900 organizations over the past three years. In December 2023, CISA, the FBI, and ACSC warned of Play ransomware’s operation that hit 300 victims by October 2023. ” reads the advisory. de or @web[.]de

Ransomware 97

Ransomware Encryption Antivirus Malware 97

Security Affairs

NOVEMBER 9, 2024

A critical flaw, tracked as CVE-2024-40711, in Veeam Backup & Replication (VBR) was also recently exploited to deploy Frag ransomware. In mid-October, Sophos researchers warned that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware.

Backups 134

Backups Ransomware VPN Accountability 134

Malwarebytes

DECEMBER 2, 2024

The US Department of Justice has charged a Russian national named Evgenii Ptitsyn with selling, operating, and distributing a ransomware variant known as “Phobos” during a four-year cybercriminal campaign that extorted at least $16 million from victims across the world.

Ransomware 126

Ransomware Backups Small Business Malware 126

SecureWorld News

JANUARY 12, 2025

This article explores how boards can effectively prepare, respond, and lead during cybersecurity incidents, turning a potential disaster into a managed crisis. These principles serve as the foundation for the board's actions before, during, and after a cybersecurity incident.

Cybersecurity 109

Cybersecurity Data breaches Ransomware Government 109

The Last Watchdog

DECEMBER 16, 2024

Williams Dr. Darren Williams , CEO, BlackFog Lesser-known ransomware groups like Hunters International will grow rapidly, leveraging AI for more efficient attacks, while “gang-hopping” by cybercriminals complicates attribution and containment. Alkove Jim Alkove , CEO, Oleria Identity is cybersecurity’s biggest challenge.

Cyber threats 264

Cyber threats CISO IoT Phishing 264

ZoneAlarm

DECEMBER 9, 2024

Ransomware attacks continue to disrupt industries worldwide, with healthcare remaining a high-profile target due to the sensitivity and critical nature of its data. Anna Jaques Hospital experienced a ransomware attack in late 2023, exposing confidential information of over 310,000 patients.

Ransomware 88

Ransomware Healthcare Cybersecurity 88

Lohrman on Security

SEPTEMBER 3, 2023

Reports from cybersecurity companies in 2023 show mixed trends regarding the number of global data breaches, ransomware attacks, records affected and government costs. But one thing is clear: Cyber attack impacts steadily grow.

Data breaches 246

Data breaches Ransomware Cyber Attacks Government 246

The Last Watchdog

OCTOBER 23, 2024

INE Security , a leading provider of cybersecurity training and certifications, today shared its cybersecurity training for cyber hygiene practices for small businesses, underscoring the critical role of continuous education in safeguarding digital assets. INE Security emphasizes the importance of regular training forall employees.

Small Business 162

Small Business Data breaches Backups Passwords 162

Krebs on Security

FEBRUARY 20, 2024

authorities have seized the darknet websites run by LockBit , a prolific and destructive ransomware group that has claimed more than 2,000 victims worldwide and extorted over $120 million in payments. In May 2023, U.S. First surfacing in September 2019, the gang is estimated to have made hundreds of millions of U.S.

Ransomware 331

Ransomware Cybercrime Encryption Insurance 331

Digital Shadows

NOVEMBER 12, 2024

Top MITRE Technique: Spearphishing The construction sector is no stranger to phishing attacks, which topped the list of initial access techniques between October 1, 2023, and September 30, 2024. This is likely driven by the vast amounts of sensitive data that organizations hold and their critical need to maintain operational continuity.

Ransomware 111

Ransomware Phishing Cyber threats Malware 111

Malwarebytes

MAY 1, 2025

Without robust IT budgets or fully staffed cybersecurity departments, small businesses often rely on their own small stable of workers (including sole proprietors with effectively zero employees) to stay safe online. That means that what worries these businesses most in cybersecurity is what is most likely to work against them.

Small Business 90

Small Business Cybersecurity Scams Passwords 90

Security Affairs

MARCH 7, 2025

Medusa ransomware has claimed nearly 400 victims since January 2023, with attacks increasing by 42% between 2023 and 2024. The Symantec Threat Hunter Team reported that the Medusa ransomware operators have claimed nearly 400 victims since January 2023. Experts tracked the Medusa ransomware activity as Spearwing.

Ransomware 64

Ransomware Antivirus Healthcare Encryption 64

Malwarebytes

JANUARY 6, 2025

A US chain of dental offices known as Westend Dental LLC denied a 2020 ransomware attack and its associated data breach, instead telling their customers that data was lost due to an accidentally formatted hard drive. In October 2020, Westend Dental was attacked by the Medusa Locker ransomware group.

Data breaches 145

Data breaches Ransomware Passwords Insurance 145

Adam Shostack

JANUARY 2, 2025

I was surprised to see the headline FBI recovers 7,000 LockBit keys, urges ransomware victims to reach out. Some somewhat lazy searching reveals: CISA (with other agencies) said 1,700 in Understanding Lockbit (June, 2023) Department of Justice said more than 2,500 victims in U.S. I didn't think there were that many victims.

Ransomware 130

Ransomware Cybersecurity 130

eSecurity Planet

FEBRUARY 18, 2025

Dream, an AI cybersecurity startup, has raised $100 million in a Series B funding round led by Bain Capital Ventures to bolster its mission of defending nations and critical infrastructure from cyber threats. Kurz, a former Austrian prime minister, co-founded Dream in 2023. led to widespread fuel shortages across the East Coast.

Cybersecurity 88

Cybersecurity Cyber threats Government Data privacy 88

Anton on Security

FEBRUARY 7, 2024

If this keeps being profitable, they will keep doing it, we need to … ImposeCost :-) ] Source: TH9 “Several times throughout 2023, we observed threat actors leverage illicit cloud access in an attempt to infect third parties. ransomware in the cloud is often different from the classics ] Now, go and read the report!

Cybersecurity 246

Cybersecurity Ransomware Passwords Cryptocurrency 246

Security Affairs

APRIL 13, 2025

The ransomware group has since leaked the stolen data on its dark web leak site. “Cell C is aware that data compromised in the recent cybersecurity incident has been unlawfully disclosed by RansomHouse, the threat actor claiming responsibility.” Ransomware attacks on U.S. The gang claimed the theft of 2 TB of data.

Data breaches 130

Data breaches Unstructured Data Identity Theft Healthcare 130

Krebs on Security

AUGUST 5, 2024

A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. ThreatLabz found Dark Angels has conducted some of the largest ransomware attacks to date, and yet little is known about the group.

Ransomware 285

Ransomware Insurance Healthcare Cybercrime 285

Security Boulevard

JUNE 10, 2025

Introduction: The AI Cybersecurity Crisis The cybersecurity landscape has fundamentally changed. AI-powered cyberattacks are projected to surge by 50% in 2024 compared to 2021, with Gartner research showing a 63% increase since 2023. The stakes have never been higher. The stakes have never been higher.

Cybersecurity 69

Cybersecurity Cyber Attacks Security Awareness Phishing 69

Security Boulevard

NOVEMBER 21, 2024

Ransomware attacks are increasingly targeting critical infrastructure — essential systems like energy, water, transportation and finance. In 2023 alone, over 40% of attacks hit these sectors, according to the FBI.

Ransomware 110

Ransomware Security Awareness Cybersecurity 110

Penetration Testing

APRIL 24, 2025

Cisco Talos 2023 incident response report unveils the operations of ToyMaker, a financially motivated Initial Access Broker (IAB) The post ToyMaker’s Playbook: Cisco Talos Exposes IAB Tactics Leading to Cactus Ransomware appeared first on Daily CyberSecurity.

Ransomware 67

Ransomware Cybersecurity Malware 67

The Last Watchdog

APRIL 30, 2023

The theme of RSA Conference 2023 — ‘stronger together’ — was certainly well chosen. It certainly was terrific to see the cybersecurity industry’s premier trade event fully restored to its pre-Covid grandeur at San Francisco’s Moscone Center last week.

Mobile 238

Mobile Cloud Migration Penetration Testing Authentication 238

Security Affairs

JANUARY 3, 2025

Richmond University Medical Center has confirmed that a ransomware attack in May 2023 affected 670,000 individuals. New York’s Richmond University Medical Center confirmed a May 2023 ransomware attack impacted 674,033 individuals. In May 2023, RUMC suffered a ransomware attack that caused a multi-week disruption.

Data breaches 78

Data breaches Ransomware Insurance Healthcare 78

SecureWorld News

NOVEMBER 13, 2024

The MOVEit vulnerability (CVE-2023-34362), first exploited in May 2023, allowed unauthenticated attackers to gain unauthorized access to vulnerable systems. The MOVEit data theft and extortion attacks in May 2023 impacted a significant number of individuals and organizations globally. Public advisories: The U.S.

Data breaches 117

Data breaches Identity Theft Education Software 117

Tech Republic Security

MAY 3, 2024

According to the M-Trends report, the average time it takes for an organisation to detect an attacker in their environment has decreased from 16 days in 2022 to 10 days in 2023.

Ransomware 206

Ransomware Cybersecurity 206

Security Affairs

NOVEMBER 13, 2024

In May 2023, Microsoft reported that the Volt Typhoon APT infiltrated critical infrastructure organizations in the U.S. In December 2023, the Black Lotus Labs team at Lumen Technologies linked a small office/home office (SOHO) router botnet, tracked as KV-Botnet to the operations of China-linked threat actor Volt Typhoon.

VPN 124

VPN Government Malware Manufacturing 124

Krebs on Security

JULY 26, 2023

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov , the former founder and CEO of one of Russia’s largest cybersecurity firms. Group-IB relocated its headquarters to Singapore several years ago, although it did not fully exit the Russian market until April 2023. election.

Cybersecurity 243

Cybersecurity Cybercrime Media Hacking 243

Hacker's King

OCTOBER 19, 2024

Cybersecurity has become one of the most critical fields in technology, ensuring that data, networks, and systems are protected from unauthorized access and malicious attacks. As cyber threats escalate, the demand for skilled professionals in cybersecurity is skyrocketing. trillion annually.

Cybersecurity 59

Cybersecurity Healthcare Cyber threats Government 59

Security Affairs

APRIL 22, 2025

“We also launched an investigation and engaged industry-leading cybersecurity experts to determine the nature and scope of the incident and notified relevant authorities.” In May 2023, the IT systems at the City of Dallas, Texas, were targeted by a ransomware attack.

Ransomware 109

Ransomware Government Hacking Accountability 109