2023, Ransomware and VPN - Cyber Security Informer

Threat Spotlight: Credential Theft vs. Admin Control—Two Devastating Paths to VPN Exploitation

Digital Shadows

MARCH 17, 2025

Key Findings Even years after their disclosure, VPN-related vulnerabilities like CVE-2018-13379 and CVE-2022-40684 remain essential tools for attackers, driving large-scale campaigns of credential theft and administrative control. How AI and automation are amplifying the scale and sophistication of VPN attacks.

VPN

VPN Authentication Ransomware Risk

Veeam Backup & Replication exploit reused in new Frag ransomware attack

Security Affairs

NOVEMBER 9, 2024

A critical flaw, tracked as CVE-2024-40711, in Veeam Backup & Replication (VBR) was also recently exploited to deploy Frag ransomware. In mid-October, Sophos researchers warned that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware.

Backups

Backups Ransomware VPN Accountability

Top 15 Exploited Vulnerabilities of 2023

SecureWorld News

NOVEMBER 12, 2024

A new joint Cybersecurity Advisory, co-authored by leading cybersecurity agencies from the United States, Australia, Canada, New Zealand, and the United Kingdom, details the vulnerabilities malicious actors routinely exploited in 2023.

Software

Software Cyber threats Risk Passwords

US authorities have indicted Black Kingdom ransomware admin

Security Affairs

MAY 4, 2025

A 36-year-old Yemeni man behind Black Kingdom ransomware is indicted in the U.S. authorities have indicted Rami Khaled Ahmed (aka Black Kingdom, of Sanaa, Yemen), a 36-year-old Yemeni national, suspected of being the administrator of the Black Kingdom ransomware operation. for 1,500 attacks on Microsoft Exchange servers.

Ransomware

Ransomware Encryption VPN Cryptocurrency

Cloak ransomware group hacked the Virginia Attorney General’s Office

Security Affairs

MARCH 24, 2025

The Cloak ransomware group claims responsibility for a cyberattack on the Virginia Attorney Generals Office that occurred in February. The ransomware group Cloak has claimed responsibility for a February cyberattack on the Virginia Attorney General Office. Chief Deputy AG Steven Popps called it a sophisticated attack.

Ransomware

Ransomware Hacking Social Engineering Manufacturing

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

technology companies between 2021 and 2023, including LastPass , MailChimp , Okta , T-Mobile and Twilio. Some SMS phishing messages told employees their VPN credentials were expiring and needed to be changed; other phishing messages advised employees about changes to their upcoming work schedule. com and ouryahoo-okta[.]com.

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In May 2023, Microsoft reported that the Volt Typhoon APT infiltrated critical infrastructure organizations in the U.S. Microsoft first noticed that to conceal malicious traffic, the threat actor routes it through compromised small office and home office (SOHO) network devices, including routers, firewalls, and VPN hardware.

VPN

VPN Government Malware Manufacturing

CISA Order Highlights Persistent Risk at Network Edge

Krebs on Security

JUNE 15, 2023

CISA’s mandate follows a slew of recent attacks wherein attackers exploited zero-day flaws in popular networking products to conduct ransomware and cyber espionage attacks on victim organizations. “This is reachable pre-authentication, on every SSL VPN appliance,” French vulnerability researcher Charles Fol tweeted.

Risk

Risk VPN Internet Internet

Fog Ransomware Exploits Legitimate Monitoring Software in Sophisticated Attacks

SecureWorld News

JUNE 12, 2025

A new report from Symantec and the Carbon Black Threat Hunter team reveals a concerning evolution in the Fog ransomware operation, which now leverages a rare mix of legitimate software, open-source tools, and stealthy delivery mechanisms to compromise organizations.

Software

Software Ransomware VPN Surveillance

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

Security Affairs

NOVEMBER 21, 2024

Between September 2021 and April 2023, the hackers carried out phishing attacks to steal login credentials from employees of 12 companies and individuals. They impersonated help desk technicians, sent the victims fake VPN deactivation warnings, and used password reset scams to gain access to company systems. In January 2024, U.S.

Cybercrime

Cybercrime Identity Theft Cryptocurrency Phishing

86 million AT&T customer records reportedly up for sale on the dark web

Zero Day

JUNE 6, 2025

Affecting "nearly all AT&T cellular customers," the company said at the time that the data included phone numbers and certain phone call data stemming from May 1, 2022, to October 31, 2022, and on January 2, 2023. At that time, the carrier said it didn't believe the data was publicly available.

Password Management

Password Management Passwords Artificial Intelligence Software

Macs targeted by info stealers in new era of cyberthreats

Malwarebytes

FEBRUARY 19, 2025

Unlike ransomware, which is deployed against large businesses that cybercriminals hope can pay hefty ransoms, info stealers can deliver illicit gains no matter the target. And in 2023, malware delivery evolved hand-in-hand with Mac info stealers. For years, then, a great deal of malware activity has focused on Windows devices.

Malware

Malware Software Passwords Cryptocurrency

Ransomware and Cyber Extortion in Q4 2024

Digital Shadows

JANUARY 14, 2025

Key Findings The last quarter of 2024 proved to be a pivotal period for ransomware activity, marked by emerging threats and unexpected shifts among established groups. Ransomware Activity Hits All-Time High in December Ransomware attacks have been climbing steadily over the past few years, despite some temporary dips along the way.

Ransomware

Ransomware Social Engineering Phishing Manufacturing

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 21

Security Affairs

NOVEMBER 24, 2024

Android Malware Detection Based on Behavioral-Level Features with Graph Convolutional Networks.

Malware

Malware Spyware Antivirus VPN

Apple quietly makes running Linux containers easier on Macs

Zero Day

JUNE 13, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Energy and Utilities Artificial Intelligence

Why SMS two-factor authentication codes aren't safe and what to use instead

Zero Day

JUNE 17, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Authentication

Authentication Password Management Small Business Passwords

When Security Becomes the Risk

Centraleyes

APRIL 24, 2025

Palo Alto Networks GlobalProtect (CVE-2024-3400) was the most exploited vulnerability, used by both state-backed groups and ransomware affiliates. Ivanti Connect Secure VPN (CVE-2023-46805, CVE-2024-21887, and CVE-2024-21893) was repeatedly targeted, with Chinese espionage groups among the early adopters.

Risk

Risk Firewall VPN Ransomware

How global threat actors are weaponizing AI now, according to OpenAI

Zero Day

JUNE 6, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Passwords

Here's why network infrastructure is vital to maximizing your company's AI adoption

Zero Day

JUNE 14, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Digital transformation

Tips to make your summer travels cyber safe

Webroot

JUNE 17, 2025

Fewer than 1 in 3 travelers (31%) protect their data with a virtual private network (VPN) when traveling internationally. Fraud rates in sectors associated with the early stages of trip planning increased more than 12% between 2023 and 2024. As soon as you start booking your trip, the cybercriminals start circling.

VPN

VPN Scams Computers and Electronics Phishing

Security Affairs newsletter Round 511 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 15, 2025

custody in exchange for Marc Fogel North Korea-linked APT Emerald Sleet is using a new tactic U.S.

Spyware

Spyware Firewall Artificial Intelligence Malware

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

PROXY WARS Security experts say that not long after the war started, Stark began hosting dozens of proxy services and free virtual private networking (VPN) services, which are designed to help users shield their Internet usage and location from prying eyes. is a company that tracks VPNs and proxy services worldwide.

DDOS

DDOS Internet Internet Government

Forget Ray-Bans: The $499 Meta Oakley smart glasses are better in almost every way

Zero Day

JUNE 20, 2025

EssilorLuxottica reported in February that two million pairs of the Meta Ray-Bans have been sold since their October 2023 launch. Meta unveiled its collaboration with Ray-Ban for smart glasses two years ago , and it has been a smashing success since they launched.

Password Management

Password Management Small Business Artificial Intelligence Software

Your Android phone just got a big upgrade for free - these Pixel models included

Zero Day

JUNE 17, 2025

Also: 'End of 10' offers hope and support to Windows 10 users who can't upgrade their PCs This is the earliest Google has launched a major Android release in a while (for comparison, Android 15 was released on Oct. 15, 2024, and Android 14 was released on Oct. Here's a look at four of the biggest upgrades in Android 16.

Password Management

Password Management Small Business Artificial Intelligence Software

I upgraded my Pixel 9 Pro to Android 16 - here's what I love (and what's still missing)

Zero Day

JUNE 20, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Artificial Intelligence Software

Attackers exploiting a patched FortiClient EMS vulnerability in the wild

SecureList

DECEMBER 19, 2024

The targeted company employs this technology to allow employees to download specific policies to their corporate devices, granting them secure access to the Fortinet VPN. Threat intelligence analysis has indicated that this host is known to be used frequently by various threat actors, among them the Conti and LockBit ransomware groups.

Internet

Internet Internet Passwords Accountability

Facebook's new passkey support could let you ditch your password once and for all

Zero Day

JUNE 19, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Passwords

Passwords Password Management Small Business Mobile

Apple Intelligence is getting more languages - and AI-powered translation

Zero Day

JUNE 9, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Digital transformation

The iPad I recommend to most users is only $299 right now

Zero Day

JUNE 14, 2025

Hand-crafted deals chosen specifically for ZDNET readers like you, fully backed by our experts.

Small Business

Small Business Password Management Artificial Intelligence VPN

Yet another European government is ditching Microsoft for Linux - here's why

Zero Day

JUNE 16, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Government

Government Password Management Small Business Software

Your Android phone just got a major feature upgrade for free - including these Pixel models

Zero Day

JUNE 13, 2025

Also: Why Denmark is dumping Microsoft Office and Windows for LibreOffice and Linux This is the earliest Google has launched a major Android release in a while (for comparison, Android 15 was released on Oct. 15, 2024, and Android 14 was released on Oct. Here's a look at four of the biggest upgrades in Android 16.

Password Management

Password Management Small Business Artificial Intelligence Software

ChatGPT can now connect to MCP servers - here's how, and what to watch for

Zero Day

JUNE 17, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Digital transformation

Is this the end of Intel-based Macs? Apple confirms bittersweet update policy for MacOS

Zero Day

JUNE 9, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Artificial Intelligence Digital transformation

I found a Linux distro that combines the best parts of other operating systems (and it works)

Zero Day

JUNE 13, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Energy and Utilities Artificial Intelligence

Heard about the 16 billion passwords leak? Here are the facts and how to protect yourself

Zero Day

JUNE 20, 2025

Also: The best VPN services right now Further, Cybernews blamed other media outlets for claiming that Facebook, Google, and Apple credentials were leaked. Attackers may deploy ransomware to blackmail their victims into paying up to regain their access to the network.

Passwords

Passwords Data breaches Password Management Identity Theft

Get a Google Pixel 9a and Pixel Buds A-Series on T-Mobile - here's how it works

Zero Day

JUNE 11, 2025

Hand-crafted deals chosen specifically for ZDNET readers like you, fully backed by our experts.

Mobile

Mobile Password Management Small Business Retail

Is your Pixel glitchy after Android 16? Here's the best workaround we've found so far

Zero Day

JUNE 17, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Artificial Intelligence Digital transformation

These XR glasses gave me a 200-inch screen to work with - and have replaced my monitors

Zero Day

JUNE 18, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Energy and Utilities Software

Your Apple Watch is getting a big upgrade. Here are the 8 features I can't wait to use in WatchOS 26

Zero Day

JUNE 14, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Software Artificial Intelligence

Google's viral research assistant just got its own app - here's how it can help you

Zero Day

JUNE 7, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Artificial Intelligence Small Business Digital transformation

With iOS 26, Apple finally makes your iPhone's Photos app usable again

Zero Day

JUNE 9, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Artificial Intelligence Digital transformation

Your favorite AI chatbot is full of lies

Zero Day

JUNE 14, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Software

Cisco rolls out AI agents to automate network tasks at 'machine speed' - with IT still in control

Zero Day

JUNE 10, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Artificial Intelligence

Artificial Intelligence Password Management Small Business Wireless

Wyze wants to keep prying eyes away from your cameras with this new feature

Zero Day

JUNE 20, 2025

ZDNET Recommends Tech Gaming Headphones Laptops Mobile Accessories Networking PCs Printers Smartphones Smart Watches Speakers Streaming Devices Streaming Services Tablets TVs Wearables Kitchen & Household Office Furniture Office Hardware & Appliances Smart Home Smart Lighting Yard & Outdoors Innovation Artificial Intelligence AR + VR Cloud (..)

Password Management

Password Management Small Business Artificial Intelligence Digital transformation

Threat Spotlight: Credential Theft vs. Admin Control—Two Devastating Paths to VPN Exploitation

Veeam Backup & Replication exploit reused in new Frag ransomware attack

Trending Sources

Top 15 Exploited Vulnerabilities of 2023

US authorities have indicted Black Kingdom ransomware admin

Cloak ransomware group hacked the Virginia Attorney General’s Office

Feds Charge Five Men in ‘Scattered Spider’ Roundup

China’s Volt Typhoon botnet has re-emerged

CISA Order Highlights Persistent Risk at Network Edge

Fog Ransomware Exploits Legitimate Monitoring Software in Sophisticated Attacks

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

86 million AT&T customer records reportedly up for sale on the dark web

Macs targeted by info stealers in new era of cyberthreats

Ransomware and Cyber Extortion in Q4 2024

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 21

Apple quietly makes running Linux containers easier on Macs

Why SMS two-factor authentication codes aren't safe and what to use instead

When Security Becomes the Risk

How global threat actors are weaponizing AI now, according to OpenAI

Here's why network infrastructure is vital to maximizing your company's AI adoption

Tips to make your summer travels cyber safe

Security Affairs newsletter Round 511 by Pierluigi Paganini – INTERNATIONAL EDITION

Stark Industries Solutions: An Iron Hammer in the Cloud

Forget Ray-Bans: The $499 Meta Oakley smart glasses are better in almost every way

Your Android phone just got a big upgrade for free - these Pixel models included

I upgraded my Pixel 9 Pro to Android 16 - here's what I love (and what's still missing)

Attackers exploiting a patched FortiClient EMS vulnerability in the wild

Facebook's new passkey support could let you ditch your password once and for all

Apple Intelligence is getting more languages - and AI-powered translation

The iPad I recommend to most users is only $299 right now

Yet another European government is ditching Microsoft for Linux - here's why

Your Android phone just got a major feature upgrade for free - including these Pixel models

ChatGPT can now connect to MCP servers - here's how, and what to watch for

Is this the end of Intel-based Macs? Apple confirms bittersweet update policy for MacOS

I found a Linux distro that combines the best parts of other operating systems (and it works)

Heard about the 16 billion passwords leak? Here are the facts and how to protect yourself

Get a Google Pixel 9a and Pixel Buds A-Series on T-Mobile - here's how it works

Is your Pixel glitchy after Android 16? Here's the best workaround we've found so far

These XR glasses gave me a 200-inch screen to work with - and have replaced my monitors

Your Apple Watch is getting a big upgrade. Here are the 8 features I can't wait to use in WatchOS 26

Google's viral research assistant just got its own app - here's how it can help you

With iOS 26, Apple finally makes your iPhone's Photos app usable again

Your favorite AI chatbot is full of lies

Cisco rolls out AI agents to automate network tasks at 'machine speed' - with IT still in control

Wyze wants to keep prying eyes away from your cameras with this new feature

Stay Connected