Security Affairs

JANUARY 3, 2025

Over 3 million POP3 and IMAP mail servers lack TLS encryption, exposing them to network sniffing attacks. million POP3 and IMAP mail servers lack TLS encryption, exposing them to network sniffing attacks. It is widely used to secure data transmitted over the internet, such as emails, web browsing, instant messaging, and file transfers.

Encryption 71

Encryption Passwords Internet Internet 71

The Last Watchdog

AUGUST 12, 2024

LAS VEGAS – Here’s what I discovered last week here at Black Hat USA 2024 : GenAI is very much in the mix as a potent X-factor in cybersecurity. After strolling the exhibits floor at Black Hat USA 2024 and speaking with the solution providers, I jotted down two categories of cybersecurity advancements: ‘coding level’ and ‘operational level.’

Software 290

Software Technology Mobile Cybersecurity 290

SecureBlitz

MAY 13, 2025

Here, I will show you the top dangerous VPN providers and the top red flags to identify and avoid dangerous VPN providers in 2024. In today’s digital landscape, a Virtual Private Network (VPN) has become an essential tool for many internet users.

VPN 72

VPN Internet Internet Encryption 72

Security Affairs

APRIL 13, 2025

Cell C, one of the biggest telecom providers in South Africa confirms a data breach following a 2024 cyberattack. The company founded in 2001 offers prepaid and postpaid mobile plans, data bundles and internet services, fiber broadband, roaming and international calling, SIM-only plans and device deals. Victims include AMD and Keralty.

Data breaches 128

Data breaches Unstructured Data Identity Theft Healthcare 128

Security Affairs

NOVEMBER 19, 2024

Ptitsyn reportedly sold the ransomware on darknet forums under aliases like “derxan” and “zimmermanx,” enabling other criminals to encrypt data and demand ransom. Affiliates paid fees to administrators like Ptitsyn for decryption keys, with payments routed via unique cryptocurrency wallets from 2021–2024.

Cybercrime 115

Cybercrime Ransomware Healthcare Education 115

Security Affairs

APRIL 5, 2025

Port of Seattle is notifying 90,000 people of a data breach after personal data was stolen in a ransomware attack in August 2024. In August 2024, a cyber attack hit the Port of Seattle , which also operates the Seattle-Tacoma International Airport. The attack impacted websites and phone systems. — Seattle-Tacoma Intl.

Data breaches 96

Data breaches Ransomware Cyber Attacks Manufacturing 96

Krebs on Security

DECEMBER 18, 2024

On the evening of May 15, 2024, Tony was putting his three- and one-year-old boys to bed when he received a message from Google about an account security issue, followed by a phone call from a “Daniel Alexander” at Google who said his account was compromised by hackers. Nevertheless, Soundcloud removed the audio file.

Cryptocurrency 363

Cryptocurrency Accountability Authentication Phishing 363

eSecurity Planet

MAY 25, 2022

Encryption and the development of cryptography have been a cornerstone of IT security for decades and remain critical for data protection against evolving threats. While cryptology is thousands of years old, modern cryptography took off in the 1970s with the help of the Diffie-Hellman-Merkle and RSA encryption algorithms.

Encryption 138

Encryption Computers and Electronics Password Management Passwords 138

The Last Watchdog

DECEMBER 18, 2024

To wrap up our 2024 year-end roundtable, we turn our attention to new technologies and trends that are emerging to help bridge the gaps. Quantum computing advances are making traditional encryption obsolete, and adversaries are stockpiling data for future decryption. Acohido Pulitzer Prize-winning business journalist Byron V.

Risk 173

Risk Threat Detection Technology Phishing 173

Security Affairs

APRIL 17, 2025

In February 2024, Trend Micro researchers observed the group targeting Asian countries, including Taiwan, Vietnam, and Malaysia. Rolling XOR Key: Utilized for encrypting communications with the command-and-control (C2) server, with key sizes varying among variants. ” concludes the report.

Encryption 115

Encryption Government Malware Hacking 115

SecureWorld News

FEBRUARY 20, 2025

Ghost ransomware actors, identified as operating from China, have been targeting unpatched systems and stolen credentials to infiltrate networks, encrypt data, and demand ransom payments. Stolen credentials remain the top breach factor, responsible for 24% of incidents in 2024. Develop and test ransomware response plans.

Ransomware 113

Ransomware IoT Encryption Social Engineering 113

SecureList

MAY 8, 2024

It utilizes customizable attack vectors, including deceptive tactics like a fake Windows Update screen displayed to mask the file encryption process, and employs security measures for testing purposes, such as checking for “Vaccine.txt” before executing.

Ransomware 130

Ransomware Encryption Small Business Cybersecurity 130

Security Affairs

OCTOBER 13, 2024

A cyber attack hit Iranian government sites and nuclear facilities Ransomware operators exploited Veeam Backup & Replication flaw CVE-2024-40711 in recent attacks GitLab fixed a critical flaw that could allow arbitrary CI/CD pipeline execution Iran and China-linked actors used ChatGPT for preparing attacks Internet Archive data breach impacted (..)

Data breaches 116

Data breaches Cryptocurrency Cybercrime Artificial Intelligence 116

Thales Cloud Protection & Licensing

OCTOBER 16, 2024

Solid Data Security: The Foundation of a Safe Digital World madhav Thu, 10/17/2024 - 04:58 It’s that time of year again. The State of Data Security in 2024 However, not only individuals must protect their digital assets; organizations do, too. The modern internet's interconnected nature also threatens data security. The result?

DDOS 62

DDOS Encryption Data breaches Identity Theft 62

SecureWorld News

NOVEMBER 14, 2024

Ransomware attacks on healthcare organizations have sharply increased in 2024, as shown by recent research from Safety Detectives. Escalating Frequency and Impact: Healthcare services have become one of the most targeted industries, moving from the fifth most attacked sector in 2023 to third in 2024.

Healthcare 119

Healthcare Ransomware Identity Theft Data breaches 119

Security Affairs

DECEMBER 26, 2024

The experts pointed out that this Mirai variant has been modified to use improved encryption algorithms. “Further investigation into this campaign revealed a new botnet that calls itself the Hail C**k Botnet thats been active since at least September 2024.” ” reads the analysis published by Akamai.

Manufacturing 89

Manufacturing Malware Firmware IoT 89

Malwarebytes

FEBRUARY 26, 2025

Take the October 2024 Android Security Bulletin. I use end-to-end-encrypted (E2EE) messaging for a reason. Sometimes the updates we install to keep our devices safe do a little bit more than we might suspect at first glance. It included a new service called Android System SafetyCore.

Artificial Intelligence 137

Artificial Intelligence Encryption Manufacturing Risk 137

SecureList

SEPTEMBER 3, 2024

Quarterly figures In Q2 2024: Kaspersky solutions blocked over 664 million attacks from various internet sources. In June, the FBI announced that it had obtained over 7,000 decryption keys for files encrypted by Lockbit ransomware attacks. The Bureau encourages victims to contact the Internet Crime Complaint Center (IC3) at ic3.gov.

Mobile 115

Mobile Antivirus Adware Ransomware 115

Digital Shadows

JANUARY 14, 2025

Key Findings The last quarter of 2024 proved to be a pivotal period for ransomware activity, marked by emerging threats and unexpected shifts among established groups. In our Q3 2024 ransomware report , we predicted activity would reach its peak in the last quarter of the year.

Ransomware 126

Ransomware Social Engineering Phishing VPN 126

SecureList

NOVEMBER 23, 2023

As we look to 2024, we believe that the consumer threat landscape will be heavily influenced by political, cultural, and technological events and trends. Unfortunately, this ambiguity sets the stage for an anticipated increase in charity-related scams in 2024. There are two main reasons for that: political pressure and DDoS attacks.

VPN 133

VPN Scams Education Internet 133

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. Top Techniques: A Closer Look Phishing Techniques: The Evergreen Threat in Cybersecurity Initial access methods were the most common MITRE ATT&CK techniques between May and July 2024.

Cyber Attacks 59

Cyber Attacks Phishing Ransomware Cyber Insurance 59

Security Affairs

AUGUST 28, 2024

Cisco Talos observed the BlackByte ransomware group exploiting the recently patched security flaw CVE-2024-37085 in VMware ESXi hypervisors in recent attacks. The flaw CVE-2024-37085 (CVSS score of 6.8) However, Talos IR believes that brute-force authentication via internet scanning was likely the initial access method.

Ransomware 127

Ransomware Authentication Encryption VPN 127

Security Affairs

APRIL 25, 2025

The campaign has been active since at least November 2024, Lazarus Group is targeting South Korean organizations using watering hole tactics and exploiting software vulnerabilities. ThreatNeedle was split into Loader and Core components, using advanced encryption (ChaCha20 with Curve25519) and system persistence techniques.

Malware 93

Malware Software Encryption Hacking 93

SecureList

DECEMBER 23, 2024

We’re shedding light on a previously undocumented toolset, which the group used heavily in 2024. Below, we use a sample seen in September 2024 as a case study to examine each stage of a Cloud Atlas attack that employs the new toolkit. dat Encrypted VBShower backdoor AppCache028732611605321388.log:AppCache0287326116053213889292.vbs

Encryption 136

Encryption Penetration Testing Malware Phishing 136

SecureList

APRIL 23, 2025

We immediately took action by communicating meaningful information to the Korea Internet & Security Agency (KrCERT/CC) for rapid action upon detection, and we have now confirmed that the software exploited in this campaign has all been updated to patched versions. The software has since been updated with patched versions. version.

Malware 144

Malware Software Encryption Internet 144

Security Affairs

APRIL 7, 2024

A researcher who goes online with the moniker ‘Netsecfish’ disclosed a new arbitrary command injection and hardcoded backdoor flaw, tracked as , tracked as CVE-2024-3273 , that impacts multiple end-of-life D-Link Network Attached Storage (NAS) device models. This trick allows attackers to obtain bypass authentication. .

Internet 110

Internet Internet DNS Hacking 110

SecureList

MAY 28, 2025

The threat actors behind Zanubis continue to refine its code adding features, switching between encryption algorithms, shifting targets, and tweaking social engineering techniques to accelerate infection rates. Communication with the C2 API was encrypted with RC4 using a hardcoded key and Base64-encoded.

Banking 111

Banking Malware Energy and Utilities Encryption 111

The Last Watchdog

AUGUST 5, 2024

As Black Hat USA 2024 gets underway here this week, a start-up called Token is getting a step closer to rolling out a new hardware solution – a ring with a biometric sensor – that is designed to shore up this exposure. What’s more Token’s next-generation MFA was recently honored with a Fast Company 2024 “World Changing Ideas” Award.

System Administration 173

System Administration Passwords Encryption Internet 173

SecureList

MAY 7, 2024

Additionally, we take a close look at several noteworthy vulnerabilities discovered in Q1 2024. The number of newly registered CVEs, 2019 — 2024. The decline in 2024 is due to data being available for Q1 only ( download ) As the chart illustrates, the number of new vulnerabilities has been steadily increasing year over year.

Software 123

Software Internet Internet Social Engineering 123

Security Affairs

OCTOBER 29, 2024

Fog and Akira ransomware operators are exploiting SonicWall VPN flaw CVE-2024-40766 to breach enterprise networks. Fog and Akira ransomware operators are exploiting the critical SonicWall VPN vulnerability CVE-2024-40766 (CVSS v3 score: 9.3) to breach corporate networks via SSL VPN access. reads the SonicWall’s advisory.

VPN 98

VPN Ransomware Firewall Internet 98

Security Affairs

MARCH 10, 2025

Kaspersky researchers discovered a mass malware campaign spreading SilentCryptoMiner by disguising it as a tool to bypass internet restrictions. By December 2024, reports emerged of further miner-infected versions spreading via Telegram and YouTube. Its configuration is Base64-encoded and encrypted with AES-CBC.

Cryptocurrency 92

Cryptocurrency Malware Social Engineering Antivirus 92

Security Boulevard

JANUARY 31, 2025

The cyberthreat landscape of 2024 was rife with increasingly sophisticated threats, and encryption played a pivotal rolea staggering 87.2% billion attempted encrypted attacks, a clear demonstration of the growing risk posed by cybercriminals leveraging encryption to evade detection. The Zscaler cloud blocked 32.1

Encryption 71

Encryption Architecture Risk Artificial Intelligence 71

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday josh.pearson@t… Tue, 11/26/2024 - 08:01 As Black Friday and Cyber Monday loom, the stakes for retailers extend far beyond enticing deals and record sales. With retail sales during 2024 set to grow to between $5.23 trillion and $5.28 trillion and $5.28

Retail 71

Retail Cyber Risk Risk DDOS 71

Security Affairs

SEPTEMBER 17, 2024

Below are the descriptions for these vulnerabilities: CVE-2024-43461 Microsoft Windows MSHTML Platform Spoofing Vulnerability CVE-2024-6670 Progress WhatsUp Gold SQL Injection Vulnerability CVE-2024-43461 – Microsoft this week warned that attackers actively exploited the Windows vulnerability CVE-2024-43461 as a zero-day before July 2024.

Internet 128

Internet Internet Encryption Passwords 128

SecureList

JUNE 3, 2024

IT threat evolution Q1 2024 IT threat evolution Q1 2024. Mobile statistics IT threat evolution Q1 2024. Quarterly figures In Q1 2024: Kaspersky solutions blocked more than 658 million attacks from various online resources. 2 Venezuela 1.91 3 Kazakhstan 1.88 4 Kyrgyzstan 1.80 5 Belarus 1.69 6 Uzbekistan 1.55

Mobile 117

Mobile Ransomware Adware IoT 117

The Last Watchdog

DECEMBER 18, 2024

Part three of a four-part series In 2024, global pressure on companies to implement advanced data protection measures intensified, with new standards in encryption and software transparency raising the bar. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

SecureList

JUNE 3, 2024

IT threat evolution Q1 2024 IT threat evolution Q1 2024. Mobile statistics IT threat evolution Q1 2024. The common methods for analyzing an iOS mobile infection are either to examine an encrypted full iOS backup or to analyze the network traffic of the affected device.

Banking 119

Banking Malware Computers and Electronics Mobile 119