2023, Security Awareness and Threat Detection

Managed detection and response in 2024

SecureList

FEBRUARY 20, 2025

Kaspersky Managed Detection and Response service (MDR) provides round-the-clock monitoring and threat detection, based on Kaspersky technologies and expertise. The annual MDR analyst report presents insights based on the analysis of incidents detected by Kaspersky’s SOC team.

Social Engineering

Social Engineering Phishing Government Threat Detection

Financial cyberthreats in 2024

SecureList

MARCH 25, 2025

Note that for mobile banking malware, we retrospectively revised the 2023 numbers to provide more accurate statistics. We also changed the methodology for PC banking malware by removing obsolete families that no longer use Trojan banker functionality, hence the sharp drop in numbers against 2023. million detections compared to 5.84

Phishing

Phishing Banking Scams Mobile

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability

SecureList

JULY 19, 2023

On March 14, 2023, Microsoft published a blogpost describing an Outlook Client Elevation of Privilege Vulnerability (CVSS: 9.8 While the threat actor infrastructure might request Net-NTLMv2 authentication, Windows will honor the defined internet security zones and will not send (leak) Net-NTLMv2 hashes.

Firmware

Firmware Internet Internet Government

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

Jane Frankland

MAY 3, 2025

The Changing Landscape of Cyber Threats AI is transforming the cybersecurity landscape, revolutionising how organisations defend themselves while simultaneously empowering hackers to elevate their methods. On one hand, AI enhances security by enabling faster threat detection, predictive analytics, and automated responses.

Cyber Attacks

Cyber Attacks Retail Cyber threats Backups

Road Tolls Scams Rise on FBI's Radar; Public Warned Against Smishing

SecureWorld News

MARCH 18, 2025

J Stephen Kowski , Field CTO at SlashNext Email Security+, said: "These toll scam texts have been circulating widely since late 2023/early 2024, rapidly evolving from isolated tests to a full-scale campaign that's now likely part of phishing kits used by multiple threat actors.

Scams

Scams Mobile Phishing Education

Microsoft Warns of Rise in Phishing Attacks via Microsoft Teams

SecureWorld News

SEPTEMBER 14, 2023

However, Microsoft detected a shift in Storm-0324's tactics earlier this year. Microsoft's Threat Intelligence team said: "In July 2023, Storm-0324 began using phishing lures sent over Teams with malicious links leading to a malicious SharePoint-hosted file. And reward the savvy threat detectives for keeping everyone else safe.

Phishing

Phishing Ransomware Cybercrime Threat Detection

Beyond Compliance: Building a Culture of Continuous Security Improvement

SecureWorld News

SEPTEMBER 5, 2024

In 2023, the cost of cybercrime globally was projected to reach $8 trillion , with expectations to rise to $10.5 This staggering figure underscores the growing threat and the extensive damage cyberattacks can cause, including data breaches, downtime, and compromised sensitive information. trillion by 2025.

Threat Detection

Threat Detection Phishing Penetration Testing Education

Top 20 Cybersecurity Companies You Need to Know in 2025

eSecurity Planet

MARCH 21, 2025

Fortinet: Best for Network Security Perimeter Protection 15 $74.33 Bitdefender: Best for endpoint security and ransomware protection 3 No current available value 4.7 Cisco: Best for Integrated Network Security 16 $242.51 CrowdStrike: Best for Endpoint Security and Services 8 $89.86 Visit Fortinet 3. Visit CrowdStrike 6.

Cybersecurity

Cybersecurity Firewall Marketing Encryption

RSAC Fireside Chat: Uptycs emulates Google, Akamai to protect cloud-native apps and endpoints

Security Boulevard

MAY 25, 2023

The inadequacy of siloed security solutions is well-documented. Related: Taking a security-first path The good news is that next-gen security platforms designed to unify on-prem and cloud threat detection and remediation are, indeed, coalescing.

Threat Detection

Threat Detection Security Awareness

Top Third-Party Data Breaches of 2024: What You Need to Know

Responsible Cyber

NOVEMBER 17, 2024

million per incident in 2023. Security awareness training remains a critical component of risk mitigation, with studies showing that organizations conducting regular training experience 29% fewer security incidents. The industry faces unprecedented challenges, recording the highest average breach cost at £4.64

Data breaches

Data breaches Healthcare Social Engineering Financial Services

The Escalating Threat of Exposed Credentials

Security Boulevard

MAY 4, 2024

In 2023 alone, over 6 billion new compromised credentials surfaced on both clear and dark web forums, escalating the cumulative total to a staggering 36 billion. This spike […] The post The Escalating Threat of Exposed Credentials appeared first on TechSpective.

Identity Theft

Identity Theft Threat Detection Authentication Passwords

Best Privileged Access Management (PAM) Software for 2022

eSecurity Planet

NOVEMBER 30, 2021

Automated threat detection takes this ease-of-use further. If you don’t already, include PAM in your company’s security awareness training. Gartner has identified PAM solutions as a top 10 security control. Another 22% plan on adopting SAM practices by 2023 or 2025. Privileged Access Management market.

Software

Software Accountability Government Passwords

What Is API Security? Definition, Fundamentals, & Tips

eSecurity Planet

SEPTEMBER 8, 2023

Tracking APIs helps manage potential security gaps and the risk of unauthorized entry, preventing potential points of attack. Threat Detection and Prevention Once your development and architecture practices are set, you still need to monitor API interactions for any suspicious or improper behavior.

Authentication

Authentication Architecture Firewall Threat Detection

8 Cyber Predictions for 2025: A CSO’s Perspective

Security Boulevard

JANUARY 9, 2025

In 2023, a hacking group used AI to impersonate Zscaler CEO Jay Chaudhry in an attempt to fool a Zscaler employee. Protecting sensitive data and critical systems from insider threats will require a unified, zero trust framework, bolstered by AI-powered threat detection and inline TLS/SSL inspection.

Social Engineering

Social Engineering Architecture Phishing Risk

Addressing the Cybersecurity Skills Gap: Strategies for Education and Training

Responsible Cyber

JULY 13, 2024

Introduction The cybersecurity skills gap is a pressing issue affecting 68% of organizations in 2023. This shortage not only increases the risk of cyber threats but also strains existing security teams, leading to potential burnout and operational inefficiencies. Education and training play a pivotal role in addressing this gap.

Education

Education Cybersecurity Cyber threats Technology

Understanding DORA Regulation: Impact on ICT Service Providers

Responsible Cyber

NOVEMBER 27, 2024

Critical ICT providers face additional scrutiny, requiring them to demonstrate robust security controls and maintain higher standards of operational resilience. This includes implementing advanced threat detection systems and maintaining detailed audit trails of security-related activities.

Risk

Risk Threat Detection Technology Penetration Testing

Top Cloud Security Issues: Threats, Risks, Challenges & Solutions

eSecurity Planet

MAY 28, 2024

Insecure Cloud Provider Default Settings Insecure cloud provider default settings occur when an organization’s security rules fail to satisfy its requirements. Crowdstrike’s 2023 cloud risk report discovered that 36% of reported misconfigurations are due to insecure default settings.

Risk

Risk Cloud Migration DDOS Encryption

What is Network Security? Definition, Threats & Protections

eSecurity Planet

MARCH 14, 2023

Commonly used technologies include: Firewall-as-a-Service (FWaaS) tools host scalable firewalls on the cloud for global reach and control Next-Generation Firewalls (NGFW) tend to be local physical or virtual appliances that add threat detection, intrusion prevention, protection for newer types of assets (containers, IoT, etc.),

Network Security

Network Security Firewall Penetration Testing Encryption

Beware the Cyber Ghouls: Spooky Threats Lurking in Digital Shadows

SecureWorld News

OCTOBER 31, 2024

Spooky fact : According to research from Proofpoint , in 2023, 71% of organizations experienced at least one successful phishing attack, and they remain one of the most prevalent forms of cyber threats. million, almost an increase of $1 million from 2023 , proving that these "vampires" are more active—and greedier—than ever.

IoT

IoT Phishing DDOS Backups

Cyber Security Informer

Managed detection and response in 2024

Financial cyberthreats in 2024

Trending Sources

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

Road Tolls Scams Rise on FBI's Radar; Public Warned Against Smishing

Microsoft Warns of Rise in Phishing Attacks via Microsoft Teams

Beyond Compliance: Building a Culture of Continuous Security Improvement

Top 20 Cybersecurity Companies You Need to Know in 2025

RSAC Fireside Chat: Uptycs emulates Google, Akamai to protect cloud-native apps and endpoints

Top Third-Party Data Breaches of 2024: What You Need to Know

The Escalating Threat of Exposed Credentials

Best Privileged Access Management (PAM) Software for 2022

What Is API Security? Definition, Fundamentals, & Tips

8 Cyber Predictions for 2025: A CSO’s Perspective

Addressing the Cybersecurity Skills Gap: Strategies for Education and Training

Understanding DORA Regulation: Impact on ICT Service Providers

Top Cloud Security Issues: Threats, Risks, Challenges & Solutions

What is Network Security? Definition, Threats & Protections

Beware the Cyber Ghouls: Spooky Threats Lurking in Digital Shadows

Stay Connected