Malwarebytes

FEBRUARY 4, 2025

And yet, if artificial intelligence achieves what is called an agentic model in 2025, novel and boundless attacks could be within reach, as AI tools take on the roles of agents that independently discover vulnerabilities, steal logins, and pry into accounts. You can find the full 2025 State of Malware report here.

Artificial Intelligence 143

Artificial Intelligence Small Business Malware Technology 143

We Live Security

JULY 4, 2025

Here’s how to avoid getting played by gamified job scams. Phil Muncaster 04 Jul 2025 • , 4 min. In 2024 alone, employment scams reported to the FBI made fraudsters over $264 million. What are task scams and how do they work? This is what the whole scam is really about. It might sound unbelievable.

Scams 108

Scams Cryptocurrency Phishing Media 108

Security Affairs

JULY 1, 2025

Europol busted a crypto scam ring that laundered €460M from 5,000+ victims. Europol has taken down a massive cryptocurrency fraud ring that scammed over 5,000 people worldwide, laundering around €460 million ($540 million). Operation Borrelli involved Spain, the U.S., France, and Estonia. ” concludes the press release.

Scams 73

Scams Cryptocurrency Banking Social Engineering 73

SecureWorld News

FEBRUARY 3, 2025

In a significant victory against cybercrime, U.S. Department of Justice (DOJ) , the seized domains were actively facilitating the sale of phishing kits, scam pages, and other fraud tools, which were then used by transnational organized crime groups to conduct business email compromise (BEC) schemes.

Phishing 113

Phishing Cybercrime Scams Authentication 113

SecureWorld News

FEBRUARY 14, 2025

Last year saw a 110% rise in cybercrime in the lead up to Valentine's Day. And 2025 will be no different, as increasingly sophisticated online hackers seek to take advantage of Valentine's themed email traffic, social media advertisements, or marketing campaigns, and exploit heightened emotions and a desire to connect.

Scams 83

Scams Cybercrime Phishing Social Engineering 83

SecureList

DECEMBER 16, 2024

Verdict: prediction not fulfilled Our predictions for 2025 Data breaches through contractors When abusing company-contractor relationships (trusted relationship attacks), threat actors first infiltrate a supplier’s systems and then gain access to the target organization’s infrastructure or data.

Marketing 103

Marketing Data breaches Cryptocurrency Malware 103

Security Affairs

APRIL 7, 2025

A campaign named PoisonSeed uses stolen CRM and bulk email credentials to send crypto seed scams, aiming to empty victims’ digital wallets. Though distinct from groups like Scattered Spider and CryptoChameleon , the attack reflects growing threats in the broader The Com cybercrime ecosystem. ” concludes the report.

Scams 78

Scams Cryptocurrency Phishing Cybercrime 78

Zero Day

JUNE 6, 2025

Written by Lance Whitney, Contributor June 6, 2025 at 5:42 a.m. The data in question was posted on a Russian cybercrime forum on May 15 and then uploaded again on June 3, apparently garnering attention from other cybercriminals and potential buyers. At that time, the carrier said it didn't believe the data was publicly available.

Password Management 128

Password Management Passwords Identity Theft Artificial Intelligence 128

BH Consulting

JUNE 30, 2025

The annual report from Europol’s European Cybercrime Centre draws upon thousands of investigations that Europol supported over the past year. Once inside, attackers can move laterally through a network, steal more data, and carry out scams using the victim’s identity.” Access to an account is often just the beginning, it added.

Scams 59

Scams DNS Marketing Accountability 59

eSecurity Planet

JULY 14, 2025

Airlines become top targets Airlines are now a prime focus for cybercrime groups. She stressed that even if a breach didn’t directly impact you, your information could still be used in phishing scams or identity theft. Within just one week, Hawaiian Airlines and Australian carrier Qantas were both hit with attacks.

Insurance 96

Insurance Identity Theft Authentication Artificial Intelligence 96

Security Affairs

MARCH 29, 2025

million in USDT stolen through ‘romance baiting’ scams, where victims are tricked into fake investments promising high returns. On February 27, 2025, the U.S. in USDT (Tether) linked to a ‘romance baiting’ scam. DOJ seized over $8.2 Attorneys Office in Ohio filed a civil forfeiture complaint for $8.2M

Scams 113

Scams Cryptocurrency Media Hacking 113

Security Affairs

JULY 13, 2025

CISA adds Citrix NetScaler ADC and Gateway flaw to its Known Exploited Vulnerabilities catalog UK NCA arrested four people over M&S, Co-op cyberattacks PerfektBlue Bluetooth attack allows hacking infotainment systems of Mercedes, Volkswagen, and Skoda Qantas data breach impacted 5.7 warrant U.S.

Data breaches 71

Data breaches Spyware Cybercrime Ransomware 71

BH Consulting

APRIL 30, 2025

Third-party risk rises as a factor in breaches: Verizon DBIR 2025 Verizons latest annual Data Breach Investigations Report (DBIR) shows some concerning trends with a sharp escalation in global cyber threats. Landed earlier than usual, the 2025 edition found that 30 per cent of breaches involved third-parties, doubling from 2024.

Data breaches 59

Data breaches Scams Cybercrime CSO 59

Security Affairs

MAY 17, 2025

officials to current or former senior US federal or state government officials and their contacts Since April 2025, threat actors have been using texts and AI voice messages impersonating senior U.S. The FBI warns of a campaign using smishing and vishing with deepfake texts and AI voice messages impersonating senior U.S.

Government 128

Government Social Engineering Authentication Accountability 128

Security Affairs

MAY 15, 2025

On May 11, 2025, the company received a ransom demand from a threat actor claiming to have customer and internal data. After a ransom email in May 2025, the company confirmed the breach was part of a single coordinated campaign that successfully exfiltrated internal data. We said no.

Data breaches 90

Data breaches Banking Accountability Retail 90

Krebs on Security

JULY 3, 2025

In May 2025, the U.S. government sanctioned a Chinese national for operating a cloud provider linked to the majority of virtual currency investment scam websites reported to the FBI. Investment scams were the top crypto-related crimes reported, with $5.8 It is generally illegal for U.S. billion in losses.

Scams 223

Scams Accountability Government Technology 223

Malwarebytes

MAY 1, 2025

Phishing In phishing scams, cybercriminals trick people and businesses into handing over sensitive information like credit card numbers or login details for vital online accounts. The hackers hijacked the channels to spread cryptocurrency scams, while deleting some of the groups old videos in the process.

Small Business 87

Small Business Cybersecurity Scams Passwords 87

Security Affairs

JANUARY 12, 2025

Finding Malware: Unveiling PLAYFULGHOST with Google Security Operations Scam Sniffer 2024: Web3 Phishing Attacks Wallet Drainers Drain $494 Million EAGERBEE, with updated and novel components, targets the Middle East Gayfemboy: A Botnet Deliver Through a Four-Faith Industrial Router 0-day Exploit Top 5 Malware Threats to Prepare Against in 2025 NonEuclid (..)

Malware 62

Malware Scams Phishing Encryption 62

Security Affairs

JUNE 15, 2025

CISA adds Wazuh, and WebDAV flaws to its Known Exploited Vulnerabilities catalog Exposed eyes: 40,000 security cameras vulnerable to remote hacking Operation Secure: INTERPOL dismantles 20,000+ malicious IPs in major cybercrime crackdown Over 80,000 servers hit as Roundcube RCE bug gets rapidly exploited A flaw could allow recovery of the phone number (..)

Spyware 64

Spyware Data breaches Cybercrime Scams 64

Security Boulevard

MARCH 7, 2025

And get the latest on cyber scams; zero-day vulnerabilities; and critical infrastructure security. Those stats come from ISACAs Tech Workplace and Culture 2025 report, which is based on a survey of about 7,700 of its members who work in IT areas such as information security, governance, assurance, data privacy and risk management.

Cybersecurity 63

Cybersecurity Scams CSO Risk 63

We Live Security

JULY 22, 2025

Editor 22 Jul 2025 Your digital footprint is more valuable than you think. Learn why your digital footprint is so valuable, and when you might actually be the product. Its not just a trail of data left behind by your online activity – its a goldmine of sensitive data.

Cybersecurity 50

Cybersecurity Threat Reports Data collection Media 50

Zero Day

JUNE 22, 2025

Written by Charlie Osborne, Contributing Writer and  Lance Whitney, Contributor June 22, 2025 at 1:30 a.m. Rather, this is based on 30 different datasets that Cybernews said it's been monitoring since the beginning of 2025. Here's how to check if your accounts are at risk and what to do next. billion records each.

Passwords 101

Passwords Data breaches Password Management Identity Theft 101

Security Affairs

JULY 13, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Datacarry Ransomware DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal Batavia spyware steals data from Russian organizations Taking SHELLTER: a commercial evasion framework abused in- the- wild Open Source Malware (..)

Malware 73

Malware Spyware Scams Ransomware 73

Security Affairs

MARCH 8, 2025

Authorities recovered $31 Million Related to 2021 Uranium Finance cyber heist Serbian student activists phone hacked using Cellebrite zero-day exploit Qilin ransomware gang claimed responsibility for the Lee Enterprises attack Meta fired 20 employees for leaking information, more firings expected International Press Newsletter Cybercrime U.S.

Data breaches 73

Data breaches Hacking Cybercrime Artificial Intelligence 73

Security Affairs

MAY 4, 2025

Mail, Broadcom Brocade Fabric OS, and Commvault Web Server flaws to its Known Exploited Vulnerabilities catalog The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning Earth Kurma APT is actively targeting government and telecommunications orgs in Southeast Asia A large-scale phishing campaign targets WordPress WooCommerce (..)

Cybercrime 76

Cybercrime Cyber Attacks Malware Phishing 76

Security Affairs

FEBRUARY 9, 2025

US Justice Department says cybercrime forum allegedly affected 17 million Americans Cybercrime is increasingly complex. What are the risks?

Spyware 64

Spyware Cybercrime Scams Social Engineering 64

Security Affairs

FEBRUARY 23, 2025

CISA adds Craft CMS and Palo Alto Networks PAN-OS flaws to its Known Exploited Vulnerabilities catalog Atlassian fixed critical flaws in Confluence and Crowd Salt Typhoon used custom malware JumbledPath to spy U.S.

Scams 71

Scams Malware Encryption Phishing 71

Malwarebytes

JUNE 30, 2025

The Android threat landscape in the first half of 2025 has entered a new phase. It could be due to seasonal scams like those we always see around tax season , which hit consumers hard this year, or widespread campaigns like toll fee scams , which also come in surges. What we’re seeing isn’t a collection of one-off scams.

Mobile 100

Mobile Malware Spyware Scams 100

SecureList

MARCH 25, 2025

Amazon Online Shopping was mimicked by 33.19% of all phishing and scam pages targeting online store users in 2024. Financial phishing In 2024, online fraudsters continued to lure users to phishing and scam pages that mimicked the websites of popular brands and financial organizations. million detections compared to 5.84

Phishing 72

Phishing Banking Scams Mobile 72

Security Affairs

MAY 15, 2025

The investigation is still ongoing, however the cryptocurrency exchange has already determined that the incident occurred on or around March 19, 2025. ” reads the update published by the company on May 14, 2025. ” reads the update published by the company on May 14, 2025.

Data breaches 76

Data breaches Energy and Utilities Insurance Accountability 76

Security Affairs

JULY 5, 2025

Sanctions Russia’s Aeza Group for aiding crooks with bulletproof hosting Qantas confirms customer data breach amid Scattered Spider attacks CVE-2025-6554 is the fourth Chrome zero-day patched by Google in 2025 U.S. Agencies warn of ongoing Iranian cyber threats to critical infrastructure U.S.

Data breaches 64

Data breaches Spyware Cybercrime Malware 64

Zero Day

JUNE 20, 2025

Written by Charlie Osborne, Contributing Writer and  Lance Whitney, Contributor June 20, 2025 at 9:32 a.m. Rather, this is based on 30 different datasets that Cybernews said it's been monitoring since the beginning of 2025. Here's how to check if your accounts are at risk and what to do next. billion records each.

Passwords 106

Passwords Data breaches Password Management Identity Theft 106

Security Affairs

APRIL 28, 2025

In the aftermath, several alternative forums emerged, some demanded entry fees, fueling confusion and raising the risk of scams or government-run honeypots. BreachForums was an English-language cybercrime forum that emerged in March 2022 as a successor to the dismantled RaidForums.

Risk 86

Risk Hacking Cybercrime Scams 86

Security Affairs

JULY 26, 2025

CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog Radiology Associates of Richmond data breach impacts 1.4 CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog Radiology Associates of Richmond data breach impacts 1.4

Spyware 52

Spyware Malware Cybercrime Passwords 52

Security Affairs

MAY 27, 2025

The company determined that the incident occurred on or around March 19, 2025. While the investigation remains ongoing, we have determined that on or around March 19, 2025, certain customer information stored on the impacted servers was accessed and later taken by an unauthorized third party. ” reads the update.

Energy and Utilities 88

Energy and Utilities Ransomware Data breaches Accountability 88

Security Affairs

JANUARY 12, 2025

CISA adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited Vulnerabilities catalog Threat actors breached the Argentinas airport security police (PSA) payroll Moxa router flaws pose serious risks to industrial environmets US adds Tencent to the list of companies supporting Chinese military Eagerbee backdoor targets govt entities (..)

Data breaches 64

Data breaches Phishing Social Engineering Engineering 64

The Last Watchdog

DECEMBER 15, 2024

Revelations linked Chinese intelligence to contractors, Russian GRU officers to data destruction, and Iranian APTs to cybercrime collaboration. Cunningham John Paul Cunningham , CISO, Silverfort Identity-based attacks in 2024, like those on Microsoft and Snowflake, are prompting insurers to intensify scrutiny in 2025. If the U.S.

Cybersecurity 290

Cybersecurity CISO Cyber threats Risk 290