Digital Shadows

JANUARY 22, 2025

In this blog, well preview the reports highlights and give insights into social engineering campaigns leveraging impersonating domains and our predictions for the threats shaping 2025. With a 152% rise in exploited network-edge vulnerabilities, securing unpatched systems has never been more critical.

Insurance 65

Insurance Phishing Social Engineering Engineering 65

Security Affairs

JULY 19, 2019

It allows crooks to generate a malicious payload for social-engineering spam campaigns, the author was offering it as a service for a three-month license of $120. The macro might also purposely attempt to bypass endpoint security defenses. .

Malware 99

Malware Social Engineering Advertising Antivirus 99

SecureList

NOVEMBER 25, 2024

This is particularly notable in the case of Lazarus APT, specifically its attacks against cryptocurrency investors in May. The attackers employed social engineering techniques to gain persistent access to the software development environment and remained undetected for years.

IoT 119

IoT Energy and Utilities Phishing Cryptocurrency 119

eSecurity Planet

SEPTEMBER 2, 2024

This patch addresses the major vulnerability and prevents future exploitation, protecting you against unauthorized remote code execution and illegal cryptocurrency mining. The problem: CVE-2024-7971 is a high-severity type confusion vulnerability in Chrome’s V8 engine that North Korean actors exploited to execute code remotely.

Risk 57

Risk Firewall Firmware Engineering 57

Digital Shadows

OCTOBER 29, 2024

Among these experienced affiliates is the “Scattered Spider” group, known for its custom tools and advanced social engineering skills, which helped RansomHub become the most active ransomware group in Q3 2024 (see Figure 1). In November 2022, IntelBroker reportedly used Endurance to target the US Federal Government.

Ransomware 88

Ransomware Encryption Technology Government 88

eSecurity Planet

DECEMBER 7, 2023

Users can establish a symmetric key to share private messages through a secure channel, like a password manager. Unfortunately, while symmetric encryption is a faster method, it is also less secure because sharing the key exposes it to theft. This article was originally written by Sam Ingalls and published on May 26, 2022.

Encryption 109

Encryption Authentication Passwords Password Management 109

Digital Shadows

OCTOBER 29, 2024

Among these experienced affiliates is the “Scattered Spider” group, known for its custom tools and advanced social engineering skills, which helped RansomHub become the most active ransomware group in Q3 2024 (see Figure 1). In November 2022, IntelBroker reportedly used Endurance to target the US Federal Government.

Ransomware 52

Ransomware Encryption Technology Government 52