Digital Shadows

JANUARY 22, 2025

Phishing Remains Top Tactic, Fueled by Teams Abuse Figure 1: Top attack techniques in true-positive customer incidents for finance & insurance sector, H2 2024 vs H2 2023 Phishing dominated cyber attacks in H2 2024, accounting for over 90% of incidents across industries due to its simplicity and effectiveness.

Insurance 65

Insurance Phishing Social Engineering Engineering 65

eSecurity Planet

FEBRUARY 19, 2024

Your IT teams should regularly check your vendors’ security bulletins for any vulnerability news or updates. February 13, 2024 Zoom Fixes Critical Vulnerability in Windows Products Type of vulnerability: Improper input validation. The vulnerability CVE is CVE-2024-24691. It’s rated as critical, with a score of 9.6.

VPN 112

VPN DNS Ransomware Software 112

SecureList

NOVEMBER 25, 2024

In this article in the KSB series, we review the trends of the past year, reflect on the predictions we made for 2024 , and offer insights into what we can expect in 2025. As expected, we continued to observe attacks in 2024 involving exploits for Apple devices. For instance, in Q2 2024, we saw a 23% increase in BYOVD usage.

IoT 112

IoT Energy and Utilities Phishing Cryptocurrency 112

Security Boulevard

APRIL 24, 2025

as a result of stronger email authentication protocols like DMARC and Googles sender verification, which blocked 265 billion unauthenticated emails.Education is under attack: Phishing in education surged 224%, with threat actors exploiting academic calendars, financial aid deadlines, and weak security defenses.

Phishing 71

Phishing Scams Cryptocurrency Authentication 71

eSecurity Planet

SEPTEMBER 2, 2024

To reduce the potential risks, update all impacted software to the most recent version and evaluate your system processes for potential modifications and security enhancements. August 26, 2024 SonicWall Identifies Access Control Vulnerability Type of vulnerability: Improper access control.

Risk 57

Risk Firewall Firmware Engineering 57

Digital Shadows

OCTOBER 29, 2024

In Q3 2024, ransomware service provider “RansomHub” emerged as the most dominant ransomware group, taking the mantle from “LockBit” and “ALPHV.” Our report spotlights five major threat actors dominating the cybersecurity landscape in 2024 that every professional should know about.

Ransomware 88

Ransomware Encryption Technology Cybercrime 88

eSecurity Planet

APRIL 22, 2024

If updates can’t be performed immediately, consider deploying additional security controls or at least disconnecting vulnerable devices from direct internet access. April 13, 2024 Delinea Secret Server Patched After Researcher’s Public Disclosure Type of vulnerability: Authentication bypass.

Authentication 62

Authentication Firewall Encryption Cybersecurity 62