BH Consulting

MARCH 7, 2025

An investigation for BBCs Panorama programme found a spike in known misogynistic and abusive accounts on Twitter near key dates around Elon Musks takeover of the platform in 2023. More troubling still, 91 per cent of victims said the abuse impacted them in some way.

Scams

eSecurity Planet

MAY 1, 2025

RSA targets passwordless and help desk threats RSA unveiled a new enterprise-ready passwordless platform aimed at thwarting advanced identity attacks, especially those that attempt to bypass help desks using social engineering. This years updates: Complete lifecycle support for passwordless security.

Cybersecurity

Security Affairs

JUNE 22, 2025

CISA adds Apple products, and TP-Link routers flaws to its Known Exploited Vulnerabilities catalog Attackers target Zyxel RCE vulnerability CVE-2023-28771 India-based car-sharing company Zoomcar suffered a data breach impacting 8.4M

Data breaches

SecureList

APRIL 16, 2025

Default use of alert severity SIEM default rules don’t take into account the context of the target system. Severity and confidence seriousness of the threat triggering this rule and the likelihood of a true positive. Research notes possible public links, threat reports, used as a basis for creating the rule.

Engineering

Thales Cloud Protection & Licensing

OCTOBER 16, 2024

A host of threats continue to put enterprise data at risk. In fact, according to the 2024 Thales Data Threat Report , more than 80% of organizations reported at least one breach in the last year, while ransomware attacks grew more frequent, with 28% of organizations reported experiencing an attack in 2024, compared to 22% in 2023.

DDOS

Security Boulevard

FEBRUARY 19, 2025

Cybercrime-as-a-Service (CaaS) now accounts for 57% of all cyberthreats, marking a 17% increase from the first half of 2024, according to Darktraces Annual Threat Report. The post CaaS Surges in 2025, Along With RATs, Ransomware appeared first on Security Boulevard.

Ransomware

We Live Security

JULY 4, 2025

Although these earnings will initially increase , there will be a point at which the app or your scammer requires you to “charge up” or “level up” your account, or “unlock your earnings” by paying into the fund, usually via cryptocurrency. This is what the whole scam is really about.

Scams

Thales Cloud Protection & Licensing

FEBRUARY 3, 2025

According to the Thales Data Threat Report, Healthcare and Life Sciences Edition , in 2023, among healthcare and life sciences respondents, human error (76%) is the leading reported cause of cloud data breaches, well ahead of a lack of MFA, the second highest, at 11%. What is HIPAA?

Healthcare

SecureWorld News

DECEMBER 27, 2024

Identity theft will evolve: Stolen identities will fuel new fraud schemes, like creating crypto accounts in victims names. Critical infrastructure in the crosshairs: Rising geopolitical tensions could lead to threat actors demonstrating their capabilities in response to economic or political pressures.

Cybersecurity

Thales Cloud Protection & Licensing

JULY 23, 2025

They are highly susceptible to phishing, brute-force attacks, and reuse across multiple accounts, leading to an alarming surge in credential-based threats. As relics, it’s high time we got rid of them. As a result, organizations are turning to passwordless authentication to bolster security and improve the user experience.

Authentication

Thales Cloud Protection & Licensing

JULY 10, 2025

Thales AI Cybersecurity: Using AI, Protecting AI, Protecting Against AI madhav Thu, 07/10/2025 - 11:53 The growing threat of AI to cybersecurity and technology resources proved the prevailing topic at RSA this year, alongside the desire to harness its power positively and productively. The question is: will they be able to do it responsibly?

Cybersecurity

Thales Cloud Protection & Licensing

FEBRUARY 17, 2025

Poor key management often leads to catastrophic outcomes: according to the Thales 2024 Data Threat Report , our survey of over 3,000 enterprises worldwide revealed that 49% had already fallen victim to a data breach. Built-in Compliance Features Regulatory frameworks demand not just encryption but also accountability.

Data breaches

Security Affairs

MAY 30, 2025

Meta stopped three covert operations from Iran, China, and Romania using fake accounts to spread propaganda on social media platforms. Meta announced the disruption of three influence operations from Iran, China, and Romania using fake accounts to spread propaganda and manipulate discourse on Facebook, Instagram, and more.

Accountability

Trend Micro

JUNE 26, 2025

Completion rates can account for employees’ knowledge. You also need to demonstrate whether their behaviour is ultimately changing as a result of the program – this can be seen in metrics such as the number of reported phishing incidents. To drive engagement, you can offer employees incentives (e.g., leaderboards, badges).

Security Awareness

Trend Micro

JUNE 10, 2025

Each team can independently sign off on an image, ensuring accountability and reducing deployment risk. Implement an enforcement-first approach Enforce policy rules to block unauthorized or unsigned images from being deployed, preventing supply chain threats and reducing the attack surface of your production environment.

Cyber Risk

Thales Cloud Protection & Licensing

APRIL 7, 2025

Identity at a Crossroads: Why Existential Identity Matters madhav Tue, 04/08/2025 - 04:31 Imagine waking up one morning to find your digital identity compromised your accounts hijacked, your access revoked, and your data in someone elses hands. Are We Sacrificing Safety for Simplicity? But at what cost?

Authentication

Trend Micro

JULY 2, 2025

More generally, organisations should consider updating security strategy to account for the elevated threat from AI-powered attacks. Continuously monitoring, assessing, and updating AI models to check for and remediate vulnerabilities, and improve accuracy, performance and reliability.

Cyber Risk

Thales Cloud Protection & Licensing

NOVEMBER 18, 2024

Identity and Access Management (IAM) The 2024 Thales Data Threat Report (DTR) Financial Services Edition revealed that only 59% of financial services organizations cite achieving security consistency across workforce and non-workforce identities.

Financial Services

SecureWorld News

JUNE 2, 2025

If anything, practitioners should have a better handle on following along with all the malicious activity and threat actors. CISOs and their teams should find comfort in: Improved communication: Security analysts can expect better cross-vendor clarity in alerts, threat reports, and threat intelligence platforms.

Cyber threats

Security Affairs

APRIL 6, 2023

The Threat Report Portugal: H2 2022 compiles data collected on the malicious campaigns that occurred from July to December, H2, 2022. This makes it a reliable, trustworthy, continuously updated source, focused on the threats targeting Portuguese citizens. The submissions were classified as either phishing or malware.

Threat Reports

Tech Republic Security

MAY 14, 2020

Oracle and KMPG threat report finds that over-privileged accounts and poorly protected cloud secrets are the biggest security risks.

Threat Reports

Webroot

APRIL 4, 2022

If your business falls within these industries or if you’re concerned your personal PC could be prone to infection, read the complete section on malware in the 2022 BrightCloud® Threat Report. Our full report helps you uncover the latest cyber trends powered by our BrightCloud® Threat Intelligence platform.

Threat Reports

Heimadal Security

NOVEMBER 24, 2022

Earlier this week, Meta published a threat report with their findings on three networks they took down in the U.S., The former was linked to individuals associated with the US military – the accounts on Facebook and Instagram were being used in covert influence campaigns targeting Russia and the Middle East. We […].

Accountability

Krebs on Security

JUNE 1, 2023

That same email address also is tied to two forum accounts for a user with the handle “ O.R.Z.” user account — this one on Verified[.]ru Prior to that, akafitis@gmail.com was used as the email address for the account “ Fitis ,” which was active on Exploit between September 2006 and May 2007.

Malware

Thales Cloud Protection & Licensing

SEPTEMBER 11, 2023

Thales 2023 Data Threat Report: The Increased Telco Cybersecurity Challenges in the 5G Era madhav Tue, 09/12/2023 - 05:15 Telecommunications firms have always faced a unique set of security challenges. It is also about accounting for the human factor, which can become the greatest defense or the most significant vulnerability.

Threat Reports

Dark Reading

SEPTEMBER 22, 2020

The most common tactics include credential stuffing using valid accounts, various forms of deception, and vulnerabilities in third-party software, Rapid7 says in its latest quarterly threat report.

Manufacturing

The Hacker News

JANUARY 14, 2024

The environmental services industry witnessed an “unprecedented surge” in HTTP-based distributed denial-of-service (DDoS) attacks, accounting for half of all its HTTP traffic. This surge in cyber attacks coincided

DDOS

Security Affairs

OCTOBER 22, 2023

North Korea-linked APT groups actively exploit JetBrains TeamCity flaw Multiple APT groups exploited WinRAR flaw CVE-2023-38831 Californian IT company DNA Micro leaks private mobile phone data Threat actors have been exploiting CVE-2023-4966 in Citrix NetScaler ADC/Gateway devices since August A flaw in Synology DiskStation Manager allows admin account (..)

Ransomware

The Last Watchdog

JULY 25, 2022

The Log4j vulnerability has predictably proved fertile ground for hackers as well, putting millions of systems at risk, with Russia accounting for more than 75 percent of Log4j scanners and helping drive. In this intensifying threat landscape, the urgency for modern DDoS defenses becomes clearer every day.

DDOS

Security Affairs

JANUARY 18, 2020

The cost of ransomware attacks accounts for 21 percent of the overall expenses, while the cost of malicious insider accounts for 15 percent. According to Accenture, malware and Web-based attacks continue to cause higher financial losses to organizations worldwide. The cost of malware attacks is now an average of US$2. Source Accenture.

Cybercrime

CyberSecurity Insiders

MARCH 25, 2023

Health-ISAC, a nonprofit, private sector, member-driven organization, has released its annual cyber threat report on current and emerging threat activity in the healthcare industry, in collaboration with Booz Allen Hamilton Cyber Threat Intelligence.

Cyber threats

Security Affairs

JULY 23, 2022

In April 2022, the FBI observed an approximately $120,000 Bitcoin payment into one of the seized cryptocurrency accounts that were identified thanks to the cooperation of the Kansas hospital. The report confirmed that In some cases, the attacks disrupted the services provided by the targeted HPH Sector organizations for prolonged periods.

Ransomware

Security Affairs

JULY 25, 2021

Kaseya obtained a universal decryptor for REvil ransomware attack Over 80 US Municipalities Sensitive Information, Including Residents Personal Data, Left Vulnerable in Massive Data Breach Threat Report Portugal: Q2 2021 What Is An Identity and Access Management So-lution and How Can Businesses Benefit From It?

Spyware

Thales Cloud Protection & Licensing

OCTOBER 17, 2023

Encryption is where data, such as your address or bank account details, are scrambled using a specific code to make them illegible. We are living in an age of data breaches – our 2023 Data Threat Report shows that more than a third of organizations globally experienced a data breach in the last 12 months.

Security Awareness

Thales Cloud Protection & Licensing

MARCH 24, 2024

Data Security Trends: 2024 Report Analysis madhav Mon, 03/25/2024 - 05:08 Amid ongoing economic uncertainty and a progressively complex threat landscape, businesses are trying to navigate increasingly stringent regulatory requirements while bolstering their security posture. Download the full Thales 2024 Thales Data Threat Report now.

IoT

SC Magazine

MAY 6, 2021

“An attacker can recreate the corporate log-in page and deliver a phishing message to the individual that prompts them to log into their account. As part of the blog, Lookout also linked to its Financial Services Threat Report , which was authored by Schless.

Mobile

SecureWorld News

MAY 18, 2020

Complexity is playing a part in misconfigurations, and these are some of the most common according to the study: 37%: Over-privileged accounts. And over half of organizations revealed that employees with privileged cloud accounts have had those credentials compromised by a spear phishing attack.

Threat Reports