SecureWorld News

JUNE 9, 2025

Global data reveals that cyberattacks rose by 131% between 2022 and 2023 across the aviation industry, with a 74 percent increase since 2020, underscoring the profundity of this threat. In the first half of 2023 alone, aviation cyberattacks surged by 24% worldwide, fueling disruptions from flight-planning systems to passenger services.

Cybersecurity 117

Cybersecurity Social Engineering Computers and Electronics Risk 117

Malwarebytes

OCTOBER 11, 2023

In other news, both LockBit and the Akira ransomware gang, the latter of which has tallied 125 victims since we first began tracking them in April 2023, were confirmed last month to be exploiting a specific zero-day flaw ( CVE-2023-20269 ) in Cisco VPN appliances. In September, they had a staggering 53 victims. Detect intrusions.

Ransomware 140

Ransomware Social Engineering Backups Engineering 140

Security Affairs

OCTOBER 17, 2023

With 85% of campaigns targeting victims with phishing emails containing malicious links, another form of a social engineering attack, education and cyber vigiliance remain a high priority. The MGM attacks were almost identical to the social engineering attacks on Caesars, which targeted a third-party IT help desk.

Social Engineering 139

Social Engineering Ransomware Engineering Phishing 139

Security Affairs

DECEMBER 25, 2024

TraderTraitor activity is often characterized by targeted social engineering directed at multiple employees of the same company simultaneously.” In August 2023, the FBI shared details about the activity of six cryptocurrency wallets operated by North Korea-linked TraderTraitor-affiliated actors. BTC ($308M). .”

Cryptocurrency 124

Cryptocurrency Social Engineering Hacking Cybercrime 124

Malwarebytes

FEBRUARY 6, 2024

The report reveals that, awash with money, the number of known Big Game attacks surged by 68% in 2023, thanks to Ransomware-as-a-Service groups like LockBit and ALPHV. Its ecosystem supports entire supply chains, dotted about with specialized organizations like access brokers and malicious software vendors.

Ransomware 130

Ransomware Cybercrime Malware Social Engineering 130

eSecurity Planet

OCTOBER 6, 2023

Despite all the advances in cybersecurity, email remains the starting point for the vast majority of cyberattacks, as phishing, malware and social engineering remain effective attack techniques. That makes email security software a worthwhile investment for organizations of all sizes. user/month Coro edge: $11.99/user/month

Software 131

Software Phishing Mobile Threat Detection 131

CyberSecurity Insiders

DECEMBER 21, 2022

Darren James, Head of Internal IT, Specops Software. However, while few things may be certain in life, with rising global conflicts, a looming recession, and the continued use of weak and breached credentials, we can be sure that more cyberattacks will be on the horizon in 2023.

Social Engineering 134

Social Engineering Passwords Password Management Phishing 134

Krebs on Security

APRIL 20, 2023

We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX. “This is the first time Mandiant has seen a software supply chain attack lead to another software supply chain attack,” reads the April 20 Mandiant report. Microsoft Corp.

Malware 331

Malware Software Technology Accountability 331

Krebs on Security

JANUARY 30, 2024

stole at least $800,000 from at least five victims between August 2022 and March 2023. 2022 that an intrusion had exposed a “limited number” of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials. Image credit: Amitai Cohen of Wiz. Twilio disclosed in Aug.

Social Engineering 359

Social Engineering Mobile Cybercrime Passwords 359

SecureList

NOVEMBER 9, 2022

What cyberthreats for business will be the greatest in 2023? The ongoing geopolitical storm brings not only classical cyberthreats for business, but also unpredictable risks and ‘black swans’ The main problem for 2023 will be supply-chain stability and cybersecurity. Irena Yordanova, Product Manager Software, Polycomp Ltd.

Cybersecurity 144

Cybersecurity Cyber Insurance Cybercrime IoT 144

The Hacker News

SEPTEMBER 18, 2023

Software development company Retool has disclosed that the accounts of 27 of its cloud customers were compromised following a targeted and SMS-based social engineering attack. The fact that Google Authenticator syncs to

Social Engineering 137

Social Engineering Phishing Accountability Engineering 137

Krebs on Security

APRIL 9, 2024

Although to be fair, it would be tough for Microsoft to eclipse the number of vulnerabilities fixed in this month’s patch batch — a record 147 flaws in Windows and related software. Yes, you read that right. “As far as I can tell, it’s the largest Patch Tuesday release from Microsoft of all time.”

DNS 317

DNS Social Engineering Malware Media 317

Krebs on Security

JUNE 15, 2024

— and charged him with stealing at least $800,000 from five victims between August 2022 and March 2023. In February 2023, LastPass disclosed that the intrusion involved a highly complex, targeted attack against an engineer who was one of only four LastPass employees with access to the corporate vault.

Hacking 344

Hacking Cybercrime Phishing Passwords 344

Jane Frankland

NOVEMBER 20, 2023

My Predictions for Cybersecurity in 2023 were… Technology enables opportunities as fast as it introduces threats. Here are my predictions for 2023. Types of attacks. Types of attacks. Ransomware attacks will surge again, and adversaries will lean on behavioural science and seemingly legitimate ways to trick users.

Cybersecurity 130

Cybersecurity Digital transformation Artificial Intelligence Architecture 130

SecureList

MAY 6, 2024

Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. Cryptocurrency phishing saw a 16% year-on-year increase in 2023, with 5.84 million in 2022.

Phishing 134

Phishing Banking Mobile Scams 134

SecureList

JUNE 26, 2023

According to a report by the Barracuda cybersecurity company, in 2021, businesses with fewer than 100 employees experienced far more social engineering attacks than larger ones. By exploiting a vulnerability in the software, the cybergang REvil infiltrated between 1,500 and 2,000 businesses around the world, many of which were SMBs.

Cybercrime 123

Cybercrime Phishing Banking Malware 123

eSecurity Planet

DECEMBER 7, 2022

But for 2023, cybersecurity will be a “key pillar” of the company’s focus – particularly data compliance and protection. This helps to explain the rise of social engineering attacks , especially with phishing. Before that, he founded AppNeta (acquired by SolarWinds in 2016) and was a founding engineer at eJonesPulse.

Cybersecurity 145

Cybersecurity Risk Technology Ransomware 145

SecureList

JANUARY 18, 2023

The threat landscape is constantly updated through new malware and spyware, advanced phishing methods, and new social engineering techniques. Last year, the cybersecurity of corporations and government agencies was more significant than ever before, and will become even more so in 2023. These add up to 144 million annually.

Media 140

Media Social Engineering Ransomware Hacking 140

Schneier on Security

APRIL 11, 2024

There’s an important moral to the story of the attack and its discovery : The security of the global internet depends on countless obscure pieces of software written and maintained by even more obscure unpaid, distractible, and sometimes vulnerable volunteers. The modularity they provide makes software projects tractable.

Software 361

Software Engineering Internet Internet 361

Security Affairs

OCTOBER 19, 2023

The Europen Agency for cybersecurity ENISA releases its ENISA Threat Landscape 2023 (ETL) report , which is the annual analysis of the state of the cybersecurity threat landscape. This is the 11th edition of the annual report and analyzes events that took place between July 2022 and July 2023.

Social Engineering 135

Social Engineering Artificial Intelligence Engineering Ransomware 135

The Last Watchdog

MARCH 4, 2024

A recent study found only 27% of charities undertook risk assessments in 2023 and only 11% said they reviewed risks posed by suppliers. Keep software updated. Outdated software and operating systems are known risk factors in cybersecurity. Many nonprofits are exposed to potential daily threats and don’t even know it.

Social Engineering 213

Social Engineering Risk Cybersecurity Authentication 213

SecureList

MARCH 25, 2025

Note that for mobile banking malware, we retrospectively revised the 2023 numbers to provide more accurate statistics. We also changed the methodology for PC banking malware by removing obsolete families that no longer use Trojan banker functionality, hence the sharp drop in numbers against 2023. million in 2023.

Phishing 77

Phishing Banking Scams Mobile 77

Security Through Education

JANUARY 18, 2023

What are some personal cybersecurity concerns for 2023? Business email compromise (BEC) attacks have been predicted to soar in 2023 according to Forbes Advisor. Update your software. Most if not, all social engineering attacks will attempt to trigger some emotion such as urgency, fear, greed, or curiosity.

Cybersecurity 98

Cybersecurity Social Engineering Scams IoT 98

SecureList

DECEMBER 9, 2024

A software update in April caused problems in a number of distributions, such as Red Hat, Debian and Rocky. A previous faulty update had already suggested broader problems with CrowdStrike’s security software at the time, though the problem didn’t receive that much publicity. Why does it matter? Why does it matter?

Internet 111

Internet Internet Risk Social Engineering 111

Hacker's King

DECEMBER 16, 2024

According to recent reports, there were over 700 million cyber attacks in 2023 alonea significant rise from the previous year. In 2023, major ransomware incidents targeted healthcare providers, educational institutions, and large corporations. The rise of AI-generated content has made these attacks even more convincing.

Cyber Attacks 59

Cyber Attacks Phishing Artificial Intelligence Penetration Testing 59

CyberSecurity Insiders

DECEMBER 6, 2022

Netwrix, a cybersecurity vendor that makes data security easy, today released key IT security trends that will affect organizations of all sizes in 2023. Here are five specific trends for 2023 that you need to be aware of: The business of cybercrime will be further professionalized. Supply chain attacks will intensify.

Cybersecurity 116

Cybersecurity Cybercrime Social Engineering Risk 116

Security Boulevard

DECEMBER 28, 2023

The post Best of 2023: Another Password Manager Leak Bug: But KeePass Denies CVE appeared first on Security Boulevard. Two researchers report vulnerability in KeePass. But lead developer Dominik Reichl says it’s not a problem—and refuses to fix the flaw.

Password Management 130

Password Management Passwords Social Engineering Security Awareness 130

eSecurity Planet

OCTOBER 11, 2023

Microsoft’s Patch Tuesday for October 2023 covers a total of 103 CVEs, including three zero-day vulnerabilities affecting WordPad, Skype and the HTTP/2 “ Rapid Reset ” DDoS vulnerability. CVE-2023-41763 , an elevation of privilege vulnerability in Skype for Business with a CVSS score of 5.3

DDOS 109

DDOS Engineering Authentication Social Engineering 109

eSecurity Planet

OCTOBER 13, 2023

BreachLock offers a wide range of services covering cloud , network , application , API , mobile, social engineering and third-party partner tests, and can help with SOC 2, PCI DSS, HIPAA, and ISO 27001 regulatory requirements too. Like BreachLock, ScienceSoft also offers a mix of manual and automated testing.

Penetration Testing 120

Penetration Testing Social Engineering Software Cyber Attacks 120

Duo's Security Blog

APRIL 20, 2023

Through the first two months of 2023 alone, the Australian Competition and Consumer Commission’s Scamwatch reported more than 19,000 phishing reports with estimated financial losses of more than $5.2 Accounting for nearly a quarter of reported incidents in Australia, phishing is a broad category of social engineering with several variations.

Phishing 106

Phishing Social Engineering Authentication Engineering 106

Malwarebytes

OCTOBER 27, 2023

Octo Tempest is believed to be a group of native English speaking cybercriminals that uses social engineering campaigns to compromise organizations all over the world. This can be done in a number of ways, but the most common ones involve social engineering attacks on the victim's carrier. Prevent intrusions.

Social Engineering 124

Social Engineering Engineering Ransomware Backups 124

SecureList

NOVEMBER 28, 2024

Later, in 2023, Elastic Lab published a report about an OceanLotus APT (aka APT32) attack that leveraged a new set of malicious tools called Spectral Viper. Earlier in 2024, a secure USB drive was found to be compromised and malicious code was injected into the access management software installed on the USB drive.

Malware 118

Malware Government Software Spyware 118

NetSpi Executives

OCTOBER 24, 2023

Don’t be afraid of social engineering attacks this Cybersecurity Awareness Month! The theme for 2023’s Cybersecurity Awareness Month is “Secure Our World,” focusing on ways individuals and businesses can protect against online threats. In fact, 98 percent of cyber attacks involve some form of social engineering.

Social Engineering 59

Social Engineering Engineering Cybersecurity Passwords 59

SecureWorld News

DECEMBER 7, 2022

But 2023 might be the year it all comes to fruition. In 2023, experts predict we will see even more widespread adoption of AI in cybersecurity. The bot can be used for almost anything, from answering simple questions to writing music or reports—even detecting vulnerabilities in code and helping write software.

Cybersecurity 98

Cybersecurity Cyber Insurance Insurance Social Engineering 98

Identity IQ

DECEMBER 20, 2023

2023: A Year of Record-Breaking Data Breaches IdentityIQ This past year has been an eye-opening year in the realm of digital security. Here, we review the largest data breaches of 2023, analyze the trends, and review proactive measures to navigate the future of security. IdentityIQ is a top choice for protecting you and your family.

Data breaches 90

Data breaches Identity Theft Cybercrime Social Engineering 90

Security Affairs

FEBRUARY 8, 2024

Ransomware Attacks: In 2023, a whopping 72.7% Data Breach Costs: The average global cost of a data breach in 2023 was $4.45 Generative AI Impact : Generative AI will have a big role in cyber security, especially in areas like email protection and fighting social engineering attacks. of organizations faced ransomware.

Social Engineering 142

Social Engineering Cyber Attacks Cyber Insurance IoT 142

Security Affairs

SEPTEMBER 9, 2024

Slim CD’s gateway system allows merchants to accept any kind of electronic payment with a single piece of software. According to the data breach notification sent to the impacted individuals, threat actors had access to its systems between August 17, 2023, and June 15, 2024. ” reads the data breach notification.

Data breaches 143

Data breaches Identity Theft Computers and Electronics Social Engineering 143