Graham Cluley

OCTOBER 24, 2024

Historically, Mac users haven't had to worry about malware as much as their Windows-using cousins. And the recent discovery of a new malware strain emphasises that the threat - even if much smaller than on Windows - remains real. Read more in my article on the Tripwire State of Security blog.

Ransomware 138

Ransomware Malware 138

The Last Watchdog

MAY 15, 2025

Once inside, they can disrupt operations, steal or sell data, launch fraudulent transactions, or install ransomware to demand payouts. In some cases, pre-built ransomware kits complete with instructions are sold for just a few hundred dollars. Carrying cyber insurance that covers downtime, breaches, and ransomware.

Small Business 113

Small Business Cybercrime Cyber Insurance Phishing 113

SecureList

DECEMBER 16, 2024

Review of last year’s predictions The number of services providing AV evasion for malware (cryptors) will increase We continuously monitor underground markets for the emergence of new “cryptors,” which are tools specifically designed to obfuscate the code within malware samples.

Marketing 104

Marketing Cryptocurrency Data breaches Malware 104

Webroot

FEBRUARY 21, 2025

Phishing scams, ransomware attacks, data breaches, and identity theft are part of a growing list of online dangers that are a daily reality. It combines multiple security capabilities into one easy-to-use package that includes: Antivirus protection Detects and neutralizes viruses, malware , spyware , and ransomware.

Antivirus 91

Antivirus Identity Theft Cyber threats Phishing 91

Centraleyes

DECEMBER 16, 2024

Ransomware Still Reigns Supreme Ransomware attacks continue to plague organizations globally, and 2024 will be no different. Attackers are becoming more organized, with ransomware-as-a-service (RaaS) operations providing easy access to malicious tools for even novice cybercriminals.

Cybersecurity 98

Cybersecurity Insurance Cyber Insurance Technology 98

SecureWorld News

FEBRUARY 10, 2025

"Adversary-in-the-Middle (AitM) attacks use a phishing proxy to intercept and relay communications between the user and the legitimate website, capturing credentials and session tokens," wrote Madere in a blog post. Users must also avoid accessing sensitive information over public networks.

DDOS 73

DDOS Ransomware Authentication Phishing 73

Zero Day

JUNE 26, 2025

Here's why A new Trojan malware is targeting sensitive information, including crypto wallet seed phrases. Also: How Avast's free AI-powered Scam Guardian protects you from online con artists According to Kaspersky, the malware targets iOS and Android devices. Here's how the malware works.  What is SparkKitty?

Password Management 124

Password Management Small Business Passwords Artificial Intelligence 124

IT Security Guru

FEBRUARY 25, 2025

In this blog, well look at the concept of MFA fatigue, how bad actors exploit it, and what entities can do to strengthen defences against this cunning tactic. Lateral Movement: Once inside, crooks may escalate privileges, exfiltrate sensitive data, or deploy ransomware and other malicious tools.

Social Engineering 118

Social Engineering Authentication Risk Accountability 118

Graham Cluley

MAY 30, 2025

The malicious hackers behind the Interlock ransomware try to justify their attacks. Learn more about what you need to know about Interlock in my article on the Tripwire State of Security blog. "We don’t just want payment; we want accountability."

Ransomware 81

Ransomware Accountability Data breaches Malware 81

Graham Cluley

MAY 23, 2025

Not by developing new types of malware or exploiting zero-day vulnerabilities, but by simply pretending to be helpful IT support desk workers. Find out how they do it in my article on the Tripwire State of Security blog. Cybercriminals are getting smarter.

Ransomware 54

Ransomware Malware Data breaches 54

Graham Cluley

JUNE 13, 2025

Bert is a recently-discovered strain of ransomware that encrypts victims' files and demands a payment for the decryption key. Read more in my article on the Fortra blog.

Ransomware 70

Ransomware Encryption Data breaches Malware 70

Graham Cluley

JULY 4, 2025

The notorious Hunters International ransomware-as-a-service operation has announced that it has shut down, in a message posted on its dark web leak site. Read more in my article on the Hot for Security blog.

Ransomware 74

Ransomware Malware 74

Jane Frankland

MAY 18, 2025

In this blog, Ill be examining how AI is reshaping the fight on both sides, shedding light on the unprecedented collaboration among hackers, and why the old cybersecurity playbook is no match for todays challenges. Malware Persistence: Hackers often leave behind backdoors or deeply embedded malware designed to survive reboots and re-imaging.

Cybersecurity 130

Cybersecurity Backups Firewall Ransomware 130

SecureList

NOVEMBER 28, 2024

We also found Cobalt Strike beacons and several traces tying this actor to the ShadowPad malware and UNC2643 activity, which is in turn associated with the HAFNIUM threat actor. In recent years, the malware attracted the attention of the community due to the publication of two articles.

Malware 115

Malware Government Software Spyware 115

eSecurity Planet

DECEMBER 4, 2024

David Weston, VP of enterprise and OS security, said in a blog post , “We are committed to ensuring that Windows remains the most reliable and resilient open platform for our customers.”

Encryption 99

Encryption Phishing Authentication Passwords 99

BH Consulting

NOVEMBER 22, 2024

MORE SentinelOne looks at three ransomware strains targeting cloud servers. MORE A new Android security feature warns of potential scam calls… MORE A malware campaign in Switzerland circulated infected QR codes via letter. MORE How startups can protect their IP from cyber thieves and economic spies.

Accountability 72

Accountability Data privacy Scams Cybersecurity 72

Hacker's King

MAY 24, 2025

The rest of the breaches are a result of malware, zero-day exploits, system misconfiguration, and so on. In this blog, we'll delve into the attack vectors and their intricate workings alongside evolving tactics used to safeguard data. Different types of malware include viruses, worms, spyware, ransomware, and trojans.

Cyber Attacks 59

Cyber Attacks Passwords Phishing Education 59

Penetration Testing

JUNE 20, 2025

This vulnerability makes it possible for an unauthenticated attacker to change the password of any user, including an administrator, which allows them to take over the account and the website ,” Wordfence warned in its blog post. Tracked as CVE-2025-4322 and rated CVSS 9.8,

Passwords 73

Passwords Accountability Penetration Testing Firewall 73

BH Consulting

NOVEMBER 14, 2024

So far we haven’t seen criminals write malware entirely in AI. Mostly they’re using it for scripts and smaller tools… It is an assistant to the malware developer, not actually replacing them.” Another recurring theme was ransomware. They don’t sink costs into something like we do with R&D,” he said.

Artificial Intelligence 64

Artificial Intelligence Ransomware Social Engineering Technology 64

Graham Cluley

JULY 2, 2025

The Swiss government has issued a warning after a third-party service provider suffered a ransomware attack, which saw sensitive information stolen from its systems and leaked onto the dark web. Read more in my article on the Fortra blog.

Government 68

Government Ransomware Data breaches Malware 68

Security Boulevard

MARCH 21, 2025

In the guidance, we describe the key steps in such a transition, and illustrate some of the cryptography and PQC-specific elements required at each stage of the programme, reads a companion blog. At a high-level, these are the three main key milestones proposed by the NCSC: By 2028 Define the organizations migration goals.

Risk 68

Risk IoT Cybersecurity Manufacturing 68

Graham Cluley

JUNE 6, 2025

Over Easter, retail giant Marks & Spencer (M&S) discovered that it had suffered a highly damaging ransomware attack that left some shop shelves empty, shut down online ordering, some staff unable to clock in and out, and caused some of its major suppliers to resort to pen and paper.

Ransomware 71

Ransomware Retail Data breaches Malware 71

Thales Cloud Protection & Licensing

MAY 27, 2025

Phishing, Malware, and the Rise of Resilient MFA Malicious actors continue to hone and improve their tactics. Unsurprisingly, malware and phishing continue to top the list of threat vectors, with ransomware close behind as a rapidly growing concern.

Threat Reports 62

Threat Reports Data breaches Encryption Phishing 62

BH Consulting

OCTOBER 24, 2024

The malevolent seven: ENISA report identifies prime cybersecurity threats Ransomware; malware; social engineering; threats against data; threats against availability (denial of service); information manipulation and interference; and supply chain attacks. Information Security Buzz has a good summary of the main points.

Social Engineering 69

Social Engineering Passwords Cybersecurity Ransomware 69

Jane Frankland

MAY 3, 2025

Reports suggest their systems were infiltrated as early as February 2025, with sensitive data reportedly stolen and ransomware deployed to disrupt their infrastructure. That’s what this blog is all about, In it, I’m examining the changing landscape of cyber threats, looking first at the M&S cyber attack.

Cyber Attacks 100

Cyber Attacks Retail Cyber threats Backups 100

Webroot

MARCH 12, 2025

This can be caused by software bugs, hardware failures, viruses and malware , resulting in system crashes or data corruption. Malware and ransomware attacks : Cybercriminals also deploy malware to lock, steal, or destroy your files. Create a disaster recovery plan: Outline steps for restoring data in case of an emergency.

Backups 95

Backups Encryption Antivirus Data preservation 95

Graham Cluley

JUNE 27, 2025

SafePay is a relatively new ransomware that is making a big impact. Find out how it is different from other ransomware, and read more in my article on the Fortra blog.

Ransomware 107

Ransomware Malware 107

Graham Cluley

MAY 7, 2025

Read more in my article on the Exponential-e blog. The UK's National Cyber Security Centre (NCSC) has warned the IT helpdesks of retailers to be on their guard against bogus support calls they might receive from hackers pretending to be staff locked out of their accounts.

Retail 52

Retail Ransomware Accountability Data breaches 52

Centraleyes

MARCH 20, 2025

Lets explore some notable use cases: Incident Response: A multinational company faced a ransomware attack that encrypted a portion of its servers. By using a dynamic timeline visualization tool, the cybersecurity team pinpointed the entry point and spread trajectory of the malware, halting its progress and restoring operations within hours.

Cyber Attacks 52

Cyber Attacks Risk Cybersecurity Ransomware 52

Security Boulevard

NOVEMBER 14, 2024

This blog isn’t going to cover every EDR based tool in an attackers arsenal, but there are some common ones that have been observed recently. of the Microsoft utility, Process Explorer, to disable EDR processes before deploying either a backdoor or ransomware on the target system.

Antivirus 63

Antivirus Engineering Malware Ransomware 63

Security Boulevard

JANUARY 8, 2025

In-the-wild exploitation observed for CVE-2025-0282 In a blog post , Ivanti confirmed that they have observed in-the-wild exploitation of CVE-2025-0282 in a limited number of customers of Ivanti Connect Secure devices. They reiterate that they have not observed exploitation against Ivanti Policy Secure or Neurons for ZTA gateways.

Authentication 58

Authentication Information Security Ransomware Malware 58

Jane Frankland

JANUARY 12, 2025

In this blog, I’m exploring these changes, grouped under key categories that I’ve used in previous years, to help business leaders and cyber risk owners better prepare for the evolving landscape. Ransomware remains a prominent threat, but the methods have evolved.

Cybersecurity 130

Cybersecurity CISO Insurance IoT 130

Security Boulevard

JUNE 26, 2025

This is a Security Bloggers Network syndicated blog from Blog Archives - AI Security Automation authored by Tony Thompson. Read the original post at: [link] June 26, 2025 June 26, 2025 Tony Thompson 0 Comments This is a Security Bloggers Network syndicated blog post. appeared first on AI Security Automation.

Social Engineering 52

Social Engineering Data privacy Security Awareness Mobile 52

Zero Day

JUNE 26, 2025

Here's how to buy one Nintendo Switch 2 revealed: Specs, pricing, release date (out now), and more official details The $700 Android phone that made me forget about my Pixel 9 Pro Best small business web hosting services of 2025 Memorial Day headphone sales 2025 Best Linux VPNs of 2025 Best online video editors of 2025 Best CRM software of 2025 (..)

Password Management 116

Password Management Small Business Software DNS 116

SecureList

JANUARY 31, 2025

In particular, attackers are increasingly using group policies to distribute malware, execute hidden scripts and deploy ransomware. The most common policy abuse tactic used by malicious actors is to deploy ransomware across multiple hosts. For this reason, group policies must be closely monitored and constantly secured.

System Administration 109

System Administration Ransomware Malware Technology 109

Security Boulevard

JUNE 27, 2025

Background Tenable’s Research Special Operations (RSO) team has compiled this blog to answer Frequently Asked Questions (FAQ) regarding Iranian cyber operations in the wake of the recent conflict and warnings from U.S. This blog post was published on June 27 and reflects VPR at that time. CVE-2021-45105 Apache Log4j2 DoS [ 1 ] [ 2 ] 5.9

Accountability 58

Accountability Passwords Authentication Energy and Utilities 58

Security Boulevard

APRIL 8, 2025

Microsoft identified this vulnerability in ransomware deployed by the PipeMagic malware via the group tracked as Storm-2460. Windows CLFS continues to be a popular attack vector for ransomware. It was assigned a CVSSv3 score of 7.8 and is rated as important. It was exploited in the wild as a zero-day.

Media 58

Media Accountability Ransomware Mobile 58