Security Affairs

FEBRUARY 16, 2025

Russia-linked group Storm-2372 used the device code phishing technique since Aug 2024 to steal login tokens from governments, NGOs, and industries. ” Device code phishing attacks exploit authentication flows to steal tokens, granting attackers access to accounts and data. . ” continues the report.

Phishing 115

Phishing Authentication Telecommunications Accountability 115

SecureList

NOVEMBER 29, 2024

IT threat evolution in Q3 2024 IT threat evolution in Q3 2024. Non-mobile statistics IT threat evolution in Q3 2024. Quarterly figures In Q3 2024: Kaspersky solutions successfully blocked more than 652 million cyberattacks originating from various online resources. 2 China 0.95 3 Libya 0.68 4 South Korea 0.66

Mobile 106

Mobile Adware Ransomware Malware 106

Krebs on Security

NOVEMBER 1, 2024

.” “That said, the phishing attacks stem from partners’ machines being compromised with malware, which has enabled them to also gain access to the partners’ accounts and to send the messages that your reader has flagged,” they continued. Snowflake responded by making 2FA mandatory for all new customers.

Phishing 275

Phishing Accountability Artificial Intelligence Cybercrime 275

SecureList

MARCH 25, 2025

Key findings Phishing Banks were the most popular lure in 2024, accounting for 42.58% of financial phishing attempts. Amazon Online Shopping was mimicked by 33.19% of all phishing and scam pages targeting online store users in 2024. Cryptocurrency phishing saw an 83.37% year-over-year increase in 2024, with 10.7

Phishing 83

Phishing Banking Scams Mobile 83

SecureList

NOVEMBER 28, 2024

This is our latest roundup, covering activity we observed during Q3 2024. Earlier in 2024, a secure USB drive was found to be compromised and malicious code was injected into the access management software installed on the USB drive. After that, we did not observe any new activity related to this actor until mid-July 2024.

Malware 117

Malware Government Software Spyware 117

Krebs on Security

NOVEMBER 21, 2024

That Joeleoli moniker registered on the cybercrime forum OGusers in 2018 with the email address joelebruh@gmail.com , which also was used to register accounts at several websites for a Joel Evans from North Carolina. In September 2024, KrebsOnSecurity reported that a 17-year-old from the United Kingdom was arrested last year by U.K.

Identity Theft 267

Identity Theft Phishing Cryptocurrency Accountability 267

SecureList

FEBRUARY 20, 2025

Security incident statistics for 2024 In 2024, the MDR infrastructure received and processed on average 15,000 telemetry events per host every day, generating security alerts as a result. Human-driven targeted attacks accounted for 43% of high-severity incidents 74% more than in 2023 and 43% more than in 2022. in IT, 18.3%

Social Engineering 101

Social Engineering Phishing Government Threat Detection 101

SecureList

NOVEMBER 29, 2024

IT threat evolution in Q3 2024 IT threat evolution in Q3 2024. Non-mobile statistics IT threat evolution in Q3 2024. Mobile statistics Targeted attacks New APT threat actor targets Russian government entities In May 2024, we discovered a new APT targeting Russian government organizations.

Energy and Utilities 105

Energy and Utilities Ransomware Malware Government 105

Krebs on Security

MARCH 14, 2025

In November 2024, KrebsOnSecurity reported that hundreds of hotels that use booking.com had been subject to targeted phishing attacks. Some of those lures worked, and allowed thieves to gain control over booking.com accounts. An alert (PDF) released in October 2024 by the U.S.

Phishing 283

Phishing Malware Scams Passwords 283

Krebs on Security

DECEMBER 29, 2024

Maybe it’s indelicate to celebrate the birthday of a cybercrime blog that mostly publishes bad news, but happily many of 2024’s most engrossing security stories were about bad things happening to bad guys. In case you missed any of them, here’s a recap of 2024’s most-read stories.

Scams 240

Scams Cybercrime Cryptocurrency Social Engineering 240

Malwarebytes

FEBRUARY 14, 2025

In October 2024, we found data reported to belong to Zacks containing 8,441 records which includes email addresses, physical addresses, phone numbers, and full names, and potentially other compromised user details. Protecting yourself after a data breach Losing data related to a financial account can have severe consequences.

Accountability 90

Accountability Data breaches Passwords Phishing 90

Security Affairs

NOVEMBER 4, 2024

The July 2024 ransomware attack that hit the City of Columbus, Ohio, exposed the personal and financial data of 500,000 individuals. On July 18, 2024, the City of Columbus, Ohio, suffered a cyber attack that impacted the City’s services.

Ransomware 115

Ransomware Identity Theft Data breaches Cyber threats 115

Krebs on Security

FEBRUARY 26, 2025

At the end of 2023, malicious hackers learned that many companies had uploaded sensitive customer records to accounts at the cloud data storage service Snowflake that were protected with little more than a username and password (no multi-factor authentication needed).

Hacking 257

Hacking Government Identity Theft Accountability 257

Security Affairs

OCTOBER 19, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the Veeam Backup and Replication flaw CVE-2024-40711 (CVSS score of 9.8) This week, Sophos researchers warned that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware.

Backups 131

Backups VPN Ransomware Authentication 131

Security Affairs

NOVEMBER 7, 2024

Google as usual did not share details about the attacks exploiting the above vulnerability, however, it added that another issue, tracked as CVE-2024-43047, is actively exploited in the wild. CVE-2024-43093 CVE-2024-43047″ reads the security bulletin published by Google. Versions up to 2.3.6 and unpatched 2.3.7

Firewall 126

Firewall Authentication Accountability Risk 126

Krebs on Security

APRIL 30, 2025

Tyler Buchanan, being escorted by Spanish police at the airport in Palma de Mallorca in June 2024. Buchanan was arrested in June 2024 at the airport in Palma de Mallorca while trying to board a flight to Italy. As first reported by KrebsOnSecurity, Buchanan (a.k.a. ” U.S.

Identity Theft 194

Identity Theft Phishing Cryptocurrency Cybercrime 194

Heimadal Security

MARCH 20, 2025

In early 2024, background checking service National Public Data was hit by a massive cyberattack that potentially compromised the sensitive, personal information of millions, or possibly even billions, of people around the world, including U.S. residents. A year later, new security threats have gained traction.

Data breaches 103

Data breaches Artificial Intelligence Accountability Cybersecurity 103

Krebs on Security

DECEMBER 11, 2024

wtf, and PQHosting ; -sites selling aged email, financial, or social media accounts, such as verif[.]work The site Verif dot work, which processes payments through Cryptomus, sells financial accounts, including debit and credit cards. work and kopeechka[.]store store ; -anonymity or “proxy” providers like crazyrdp[.]com

Cryptocurrency 287

Cryptocurrency Banking Cybercrime Advertising 287

BH Consulting

NOVEMBER 22, 2024

Microsoft moves to lock down admin accounts against exploits Microsoft is introducing a new security feature for Windows 11 called Admin Protection, designed to make admin accounts more secure during privileged or sensitive actions. Sign up here The post Security Roundup November 2024 appeared first on BH Consulting.

Accountability 72

Accountability Data privacy Scams Cybersecurity 72

Security Affairs

DECEMBER 7, 2024

The 8Base ransomware group attacked Croatia’s Port of Rijeka, stealing sensitive data, including contracts and accounting info. The ransomware gang claims to have stolen sensitive data including accounting info and contracts. The Port of Rijeka (Luka Rijeka d.d.),

Ransomware 125

Ransomware Hacking Accountability Cyber Attacks 125

SecureWorld News

MAY 14, 2025

The FBI's Internet Crime Complaint Center (IC3) has released its 2024 Internet Crime Report, marking a record-breaking year in cybercrime. In 2024, law enforcement in India conducted multiple call center raids, disruptions, seizures, and arrests of the individuals alleged to be involved in perpetrating these crimes. billion in losses.

Cybercrime 72

Cybercrime Scams Internet Internet 72

Krebs on Security

NOVEMBER 19, 2024

On November 8, 2024, Finastra notified financial institution customers that on Nov. The Telegram account that abyss0 listed in their sales thread appears to have been suspended or deleted. Likewise, abyss0’s account on BreachForums no longer exists, and all of their sales threads have since disappeared.

Data breaches 306

Data breaches Banking Cybercrime Advertising 306

Security Affairs

DECEMBER 4, 2024

Veeam released security updates for a critical vulnerability, tracked as CVE-2024-42448 (CVSS score of 9.9) Veeam also addressed a vulnerability, tracked as CVE-2024-42449 (CVSS score 7.1) that could be exploited to leak an NTLM hash of the VSPC server service account and delete files on the VSPC server machine.

Backups 114

Backups Ransomware Accountability Hacking 114

Security Affairs

OCTOBER 14, 2024

The data breach occurred on August 17, 2024 and was discovered two days later, on August 19, 2024. “Between August 17 and August 19, a third party accessed and obtained certain information without authorization using two customer accounts that they had recently established.

Data breaches 134

Data breaches Financial Services Accountability Hacking 134

Security Affairs

OCTOBER 23, 2024

For instance, organizations can leverage DSPM to detect and catalog personally identifiable information (PII) spread across the organization’s data stores, SaaS services, or multi-cloud accounts. Similarly, GDPR also places great emphasis on implementing measures to prevent unauthorized access or sensitive data exposure.

Data privacy 126

Data privacy Unstructured Data Risk Data breaches 126

Malwarebytes

APRIL 16, 2025

Bad bots comprised 37% of internet traffic in 2024, up from 32% the year prior. Good bots accounted for just 14% of the internet’s traffic. An increasing number try to hijack peoples’ online accounts, which they often do by credential stuffing. These account takeover attacks have skyrocketed lately.

Internet 144

Internet Internet Passwords Artificial Intelligence 144

Security Affairs

OCTOBER 17, 2024

A critical, Kubernetes Image Builder vulnerability, tracked as CVE-2024-9486 (CVSS score: 9.8), could allow attackers to gain root access if exploited under specific conditions. The fixed version sets a randomly-generated password for the duration of the image build and it disables the builder account at the conclusion of the image build.

Accountability 135

Accountability Passwords Hacking Cybersecurity 135

Responsible Cyber

NOVEMBER 23, 2024

Overview of Vendor Breaches in 2024 In 2024, the cybersecurity landscape has faced an alarming rise in vendor-related breaches, underscoring the vulnerabilities associated with third-party service providers. The healthcare sector has been particularly hard-hit, accounting for over 30% of the total breaches.

Risk 81

Risk Healthcare Education Cybersecurity 81

Schneier on Security

AUGUST 19, 2024

We reviewed compromise announcements from 53 dedicated leak sites in the first half of 2024 and found 1,762 new posts. Of the 53 ransomware groups whose leak sites we monitored, six of the groups accounted for more than half of the compromises observed. This averages to approximately 294 posts a month and almost 68 posts a week.

Ransomware 315

Ransomware Accountability 315

Security Affairs

OCTOBER 22, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the ScienceLogic SL1 flaw CVE-2024-9537 (CVSS v4 score: 9.3) ” On September 24, 2024, cloud hosting provider Rackspace reported an issue with its ScienceLogic EM7 monitoring tool. CISA orders federal agencies to fix this vulnerability by November 11, 2024.

Encryption 123

Encryption Hacking Accountability Cybersecurity 123

The Last Watchdog

MAY 13, 2024

Secretary of State Antony Blinken opened RSA Conference 2024 last week issuing a clarion call for the cybersecurity community to defend national security, nurture economic prosperity and reinforce democratic values. In a hyper-interconnected operating environment this can only be achieve by accounting for context.

Artificial Intelligence 278

Artificial Intelligence Technology Accountability DNS 278

Security Affairs

FEBRUARY 3, 2025

The February 2025 Android security updates addressed 48 vulnerabilities, including a zero-day flaw, tracked as CVE-2024-53104 , which is actively exploited in attacks in the wild. “There are indications that CVE-2024-53104 may be under limited, targeted exploitation.” ” reads Google’s bulletin.

Media 116

Media Authentication Hacking Accountability 116

Malwarebytes

DECEMBER 27, 2024

We started off 2024 with a warning from the British National Cyber Security Centre (NCSC) telling us it expects AI to heighten the global ransomware threat. But amazing is not always positive. There have been some incidents in the past year that have made many people even more afraid of AI than they already were.

Scams 117

Scams Media Artificial Intelligence Technology 117

The Last Watchdog

FEBRUARY 11, 2025

11, 2025, CyberNewswire — Gcore , the global edge AI, cloud, network, and security solutions provider, today announced the findings of its Q3-Q4 2024 Radar report into DDoS attack trends. DDoS attacks have reached unprecedented scale and disruption in 2024, and businesses need to act fast to protect themselves from this evolving threat.

DDOS 130

DDOS Financial Services Technology Accountability 130

The Last Watchdog

DECEMBER 12, 2023

What should I be most concerned about – and focus on – in 2024? In 2024, we will see more targeted, sophisticated business email compromise (BEC) attacks, including VIP impersonation, vendor email compromise (VEC), and autonomous agents used for malicious purposes. The comments we received were uniformly insightful and helpful.

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Software 258

Security Affairs

NOVEMBER 29, 2024

Rockstar 2FA targets Microsoft 365 accounts and bypasses multi-factor authentication with adversary-in-the-middle (AitM) attacks. The experts observed a phishing campaign targeting Microsoft 365 users with adversary-in-the-middle attacks that has surged since August 2024. ” concludes the report.

Phishing 114

Phishing Accountability Authentication Advertising 114

Security Boulevard

JANUARY 28, 2025

Ransomware attacks surged to a record high in December 2024, with 574 incidents reported, according to an NCC Group report. FunkSec, a newly identified group combining hacktivism and cybercrime, accounted for over 100 attacks (18% of the total), making it the most active group that month, ahead of Cl0p, Akira and RansomHub.

Ransomware 118

Ransomware Cybercrime Accountability Cybersecurity 118