Malwarebytes

APRIL 16, 2025

If you sometimes feel that the internet isn’t the same vibrant place it used to be, you’re not alone. Bad bots comprised 37% of internet traffic in 2024, up from 32% the year prior. Good bots accounted for just 14% of the internet’s traffic. Bad bots do all kinds of unpleasant things.

Internet 144

Internet Internet Passwords Artificial Intelligence 144

Krebs on Security

DECEMBER 3, 2024

Phishing attacks increased nearly 40 percent in the year ending August 2024, with much of that growth concentrated at a small number of new generic top-level domains (gTLDs) — such as.shop ,top ,xyz — that attract scammers with rock-bottom prices and no meaningful registration requirements, new research finds.

Cybercrime 302

Cybercrime Phishing Accountability Internet 302

Security Affairs

JANUARY 3, 2025

Experts warn of a new PoC exploit, LDAPNightmare, that targets a Windows LDAP flaw (CVE-2024-49113), causing crashes & reboots. The vulnerability CVE-2024-49113 (CVSS score of 7.5), namedLDAPNightmare, is a Windows Lightweight Directory Access Protocol (LDAP) Denial of Service flaw that was discovered by the researcher Yuki Chen.

DNS 131

DNS Internet Internet Hacking 131

Krebs on Security

FEBRUARY 14, 2024

The Minnesota-based Internet provider U.S. Internet Corp. Internet was publishing more than a decade’s worth of its internal email — and that of thousands of Securence clients — in plain text out on the Internet and just a click away for anyone with a Web browser. Internet with their email.

Internet 363

Internet Internet Wireless Government 363

Malwarebytes

OCTOBER 21, 2024

Those who hacked the Internet Archive haven’t gone away. Users of the Internet Archive who have submitted helpdesk tickets are reporting replies to the tickets from the hackers themselves. Internet Archive, most known for its Wayback Machine, is a digital library that allows users to look at website snapshots from the past.

Internet 141

Internet Internet DDOS Data breaches 141

Security Affairs

NOVEMBER 14, 2024

The exploitation of the recently disclosed ‘won’t fix’ issue CVE-2024-10914 in legacy D-Link NAS devices began days after its disclosure. Days after D-Link announced it wouldn’t patch a critical vulnerability, tracked as CVE-2024-10914 (CVSS score of 9.8), in legacy D-Link NAS devices, that threat actors started attempting to exploit.

DNS 119

DNS Internet Internet Hacking 119

Krebs on Security

MAY 29, 2025

“Americans lose billions of dollars annually to these cyber scams, with revenues generated from these crimes rising to record levels in 2024,” reads a statement from the U.S. A graphic from the FBI explaining how Funnull generated a slew of new domains on a regular basis and mapped them to Internet addresses on U.S.

Scams 227

Scams Internet Internet Cybercrime 227

Security Affairs

OCTOBER 29, 2024

Fog and Akira ransomware operators are exploiting SonicWall VPN flaw CVE-2024-40766 to breach enterprise networks. Fog and Akira ransomware operators are exploiting the critical SonicWall VPN vulnerability CVE-2024-40766 (CVSS v3 score: 9.3) to breach corporate networks via SSL VPN access. reads the SonicWall’s advisory.

VPN 134

VPN Ransomware Firewall Internet 134

Krebs on Security

AUGUST 13, 2024

CVE-2024-38106 , CVE-2024-38107 and CVE-2024-38193 all allow an attacker to gain SYSTEM level privileges on a vulnerable machine, although the vulnerabilities reside in different parts of the Windows operating system. The final zero-day this month is CVE-2024-38189 , a remote code execution flaw in Microsoft Project.

Internet 318

Internet Internet Malware Software 318

Krebs on Security

OCTOBER 8, 2024

One of the zero-day flaws — CVE-2024-43573 — stems from a security weakness in MSHTML , the proprietary engine of Microsoft’s Internet Explorer web browser. If that sounds familiar it’s because this is the fourth MSHTML vulnerability found to be exploited in the wild so far in 2024.

Engineering 278

Engineering Internet Internet System Administration 278

SecureList

NOVEMBER 13, 2024

In this article, we’ll review the state of GNSS receiver security in 2024. Internet-exposed GNSS receivers and attacks on them In 2023, at least two black hat groups conducted multiple attacks against GNSS receivers. Our research revealed that 3,028 receivers remained vulnerable to attacks over the internet.

Internet 116

Internet Internet Mobile Telecommunications 116

Krebs on Security

OCTOBER 17, 2024

Prosecutors say Anonymous Sudan offered a “Limited Internet Shutdown Package,” which would enable customers to shut down internet service providers in specified countries for $500 (USD) an hour. An indictment in the Central District of California notes the duo even swamped the websites of the FBI and the Department of State.

DDOS 273

DDOS Government Internet Internet 273

Krebs on Security

JUNE 11, 2024

CVE-2024-30080 is a flaw in the Microsoft Message Queuing (MSMQ) service that can allow attackers to execute code of their choosing. CVE-2024-30080 has been assigned a CVSS vulnerability score of 9.8 (10 CVE-2024-30078 is a remote code execution weakness in the Windows WiFi Driver , which also has a CVSS score of 9.8.

Internet 295

Internet Internet Software Malware 295

Krebs on Security

JANUARY 14, 2025

“What makes this vulnerability so impactful is the fact that it is remotely exploitable, so attackers can reach the compromised machine(s) over the internet, and the attacker does not need significant knowledge or skills to achieve repeatable success with the same payload across any vulnerable component,” Hopkins wrote.

Artificial Intelligence 292

Artificial Intelligence Social Engineering Encryption Internet 292

Krebs on Security

FEBRUARY 13, 2024

Top of the heap on this Fat Patch Tuesday is CVE-2024-21412 , a “security feature bypass” in the way Windows handles Internet Shortcut Files that Microsoft says is being targeted in active exploits. Microsoft Corp. msi) that in turn unloads a remote access trojan (RAT) onto infected Windows systems.

Engineering 305

Engineering Internet Internet Software 305

SecureList

NOVEMBER 29, 2024

IT threat evolution in Q3 2024 IT threat evolution in Q3 2024. Non-mobile statistics IT threat evolution in Q3 2024. Quarterly figures In Q3 2024: Kaspersky solutions successfully blocked more than 652 million cyberattacks originating from various online resources. 2 China 0.95 3 Libya 0.68 4 South Korea 0.66

Mobile 108

Mobile Adware Ransomware Malware 108

Schneier on Security

JULY 17, 2024

In the first quarter of 2024 alone, Cloudflare blocked 4.5 From ZDNet : However, Distributed Denial of Service (DDoS) attacks continue to be cybercriminals’ weapon of choice, making up over 37% of all mitigated traffic. The scale of these attacks is staggering. million unique DDoS attacks.

Internet 338

Internet Internet DDOS Cybercrime 338

Security Affairs

MARCH 10, 2025

Threat actors exploit PHP flaw CVE-2024-4577 for remote code execution. GreyNoise researchers warn of a large-scale exploitation of a critical vulnerability, tracked as CVE-2024-4577 (CVSS 9.8), in PHP. The flaw CVE-2024-4577 (CVSS score: 9.8) Over 1,000 attacks detected globally. is a PHP-CGI OS Command Injection Vulnerability.

DDOS 100

DDOS Security Intelligence Malware Hacking 100

Krebs on Security

MAY 14, 2024

CVE-2024-30051 is an “elevation of privilege” bug in a core Windows library. ” CVE-2024-30040 is a security feature bypass in MSHTML , a component that is deeply tied to the default Web browser on Windows systems. . First, the zero-days.

Social Engineering 298

Social Engineering Backups Malware Software 298

Krebs on Security

FEBRUARY 28, 2025

BEARHOST prides itself on the ability to evade blocking by Spamhaus , an organization that many Internet service providers around the world rely on to help identify and block sources of malware and spam. effective July 20, 2024. Kaspersky did not respond to repeated requests for comment. Last year, the U.S. Image: cidr-report.org.

Malware 265

Malware Antivirus Software DDOS 265

Krebs on Security

FEBRUARY 11, 2025

Tenable senior staff research engineer Satnam Narang noted that since 2022, there have been nine elevation of privilege vulnerabilities in this same Windows component — three each year — including one in 2024 that was exploited in the wild as a zero day (CVE-2024-38193).

Artificial Intelligence 216

Artificial Intelligence Engineering Software Internet 216

SecureList

NOVEMBER 28, 2024

This is our latest roundup, covering activity we observed during Q3 2024. Earlier in 2024, a secure USB drive was found to be compromised and malicious code was injected into the access management software installed on the USB drive. After that, we did not observe any new activity related to this actor until mid-July 2024.

Malware 122

Malware Government Software Spyware 122

SecureList

DECEMBER 6, 2024

Q3 2024 saw multiple vulnerabilities discovered in Windows and Linux subsystems that are not standard for cyberattacks. Total number of registered vulnerabilities and number of critical ones, Q3 2023 and Q3 2024 ( download ) Q3 2024 preserved the upward trend in the number of vulnerabilities detected and registered.

Authentication 112

Authentication Software Wireless Internet 112

Krebs on Security

DECEMBER 29, 2024

Maybe it’s indelicate to celebrate the birthday of a cybercrime blog that mostly publishes bad news, but happily many of 2024’s most engrossing security stories were about bad things happening to bad guys. In case you missed any of them, here’s a recap of 2024’s most-read stories.

Scams 244

Scams Cybercrime Cryptocurrency Social Engineering 244

SecureList

DECEMBER 27, 2024

Statistics across all threats In the third quarter of 2024, the percentage of ICS computers on which malicious objects were blocked decreased by 1.5 The percentage of ICS computers on which malicious objects were blocked during the third quarter of 2024 was highest in July and September, and lowest inAugust. Regions and the world.

Malware 106

Malware Spyware Internet Internet 106

Security Affairs

NOVEMBER 4, 2024

The July 2024 ransomware attack that hit the City of Columbus, Ohio, exposed the personal and financial data of 500,000 individuals. On July 18, 2024, the City of Columbus, Ohio, suffered a cyber attack that impacted the City’s services. ” reads the update published by the City.

Ransomware 119

Ransomware Identity Theft Data breaches Cyber threats 119

Krebs on Security

OCTOBER 18, 2024

TV Globo didn’t name the man arrested, but the Portuguese tech news outlet Tecmundo published a report in August 2024 that named USDoD as 33-year-old Luan BG from Minas Gerais, Brazil. Additional reporting revealed National Public Data had inadvertently published its own passwords on the Internet. Image: Hackread.com.

Social Engineering 281

Social Engineering Passwords Cybercrime Mobile 281

Malwarebytes

DECEMBER 31, 2024

It may sound weird when I say that I would like to remember 2024 as the year of the biggest breaches. Huge increase in numbers As we reported in July , the number of data breach victims went up 1,170% in Q2 2024, compared to Q2 2023 (from 81,958,874 victims to 1,041,312,601). Remember these headlines?

Data breaches 118

Data breaches Healthcare Passwords Banking 118

Lohrman on Security

JUNE 9, 2024

Over the past month, the Verizon Data Breach Investigation Report and the Watchguard Technologies Internet Security Report were released. Here are some highlights.

Data breaches 302

Data breaches Internet Internet Technology 302

Penetration Testing

DECEMBER 1, 2024

North Korean-linked hacking group TA-RedAnt has been implicated in a sophisticated large-scale cyber attack dubbed “Operation Code on Toast,” targeting unsuspecting users through a novel Internet Explorer (IE) vulnerability.

Cyber Attacks 82

Cyber Attacks Internet Internet Hacking 82

Krebs on Security

AUGUST 27, 2024

Malicious hackers are exploiting a zero-day vulnerability in Versa Director , a software product used by many Internet and IT service providers. 26, Versa urged customers to deploy a patch for the vulnerability ( CVE-2024-39717 ), which the company said is fixed in Versa Director 22.1.4 ISP on June 12, 2024.

Internet 343

Internet Internet Technology Engineering 343

SecureWorld News

MAY 14, 2025

The FBI's Internet Crime Complaint Center (IC3) has released its 2024 Internet Crime Report, marking a record-breaking year in cybercrime. Chad Yarbrough, Operations Director for Criminal and Cyber at the FBI, said: "This year marks the 25th anniversary of the FBI's Internet Crime Complaint Center, or IC3.

Cybercrime 73

Cybercrime Scams Internet Internet 73

SecureList

DECEMBER 4, 2024

The statistics in this report cover the period from November 2023 through October 2024. Fill the form below to download the “Kaspersky Security Bulletin 2024. Millions of Kaspersky users around the globe assist us in collecting information about malicious activity. Stopped miners from infecting 999,794 unique users.

Mobile 96

Mobile Malware Banking Ransomware 96

Security Affairs

AUGUST 1, 2024

Shadowserver researchers reported that over 20,000 internet-exposed VMware ESXi instances are affected by the actively exploited flaw CVE-2024-37085. Researchers at the Shadowserver Foundation reported that approximately 20,000 VMware ESXi servers exposed online appear impacted by the exploited vulnerability CVE-2024-37085.

Internet 143

Internet Internet Ransomware Authentication 143

Trend Micro

JULY 14, 2024

Our threat hunters discovered CVE-2024-38112, which was used as a zero-day by APT group Void Banshee, to access and execute files through the disabled Internet Explorer using MSHTML. We promptly identified and reported this zero-day vulnerability to Microsoft, and it has been patched.

Internet 144

Internet Internet 144

SecureList

MARCH 25, 2025

Key findings Phishing Banks were the most popular lure in 2024, accounting for 42.58% of financial phishing attempts. Amazon Online Shopping was mimicked by 33.19% of all phishing and scam pages targeting online store users in 2024. Cryptocurrency phishing saw an 83.37% year-over-year increase in 2024, with 10.7

Phishing 80

Phishing Banking Scams Mobile 80

Krebs on Security

MAY 20, 2025

The brief attack appears to have been a test run for a massive new Internet of Things (IoT) botnet capable of launching crippling digital assaults that few web destinations can withstand. As documented by researchers at QiAnXin XLab , the botnet was first identified in an August 2024 attack on a large gaming platform.

DDOS 296

DDOS IoT Internet Internet 296