Cyber Risk, Phishing and Risk - Cyber Security Informer

News alert: Living Security report reveals that just 10% of employees drive 73% of cyber risk

The Last Watchdog

JULY 21, 2025

Austin, TX, July 21, 2025, CyberNewswire — Living Security, the global leader in Human Risk Management (HRM), today released the 2025 State of Human Cyber Risk Report , an independent study conducted by leading research firm Cyentia Institute.

Cyber Risk

Cyber Risk Risk Media Phishing

News alert: SpyCloud study shows Darknet identity exploitation arising to become a primary cyber risk

The Last Watchdog

MARCH 19, 2025

SpyCloud , the leading identity threat protection company, today released its 2025 SpyCloud Annual Identity Exposure Report , highlighting the rise of darknet-exposed identity data as the primary cyber risk facing enterprises today. It requires organizations to rethink the risks posed by employees, consumers, partners and suppliers.

Cyber Risk

Cyber Risk Risk Phishing Cybercrime

How Spread Betting Platforms Safeguard Traders Against Cyber Risks

IT Security Guru

JANUARY 30, 2025

If these cyber attacks are successful, even just a little, they could lead to billions of pounds in damages and losses to the companies that own the platforms and the traders. So, lets explore how spread betting platforms are rising to this challenge and ensuring that their platforms are cyber risk-free.

Cyber Risk

Cyber Risk Risk Penetration Testing Accountability

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Part two of a four-part series The explosion of AI-driven phishing, insider threats, and business logic abuse has forced a shift toward more proactive, AI-enhanced defenses. Businesses must adopt tools and automation capable of invoking immediate action, even at the risk of false positives. The drivers are intensifying.

Cyber threats

Cyber threats CISO IoT Phishing

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday josh.pearson@t… Tue, 11/26/2024 - 08:01 As Black Friday and Cyber Monday loom, the stakes for retailers extend far beyond enticing deals and record sales. trillion, the risk of a data breach extends beyond immediate financial losses.

Retail

Retail Cyber Risk Risk DDOS

See No Risk, Hear No Warning, Speak No Breach: The Cybersecurity Trap for Small Businesses

Jane Frankland

APRIL 10, 2025

Just like the three wise monkeys , some small business owners are unintentionally following a philosophy of see no risk, hear no warning, speak no threat when it comes to cybersecurity. Why Small Business Cybersecurity Matters More Than Ever In a supply chain world, your weakest link is someone elses risk exposure. Here’s how: 1.

Small Business

Small Business Risk Cybersecurity Cyber Risk

AI Dilemma: Emerging Tech as Cyber Risk Escalates

Trend Micro

JULY 2, 2025

Move faster than your adversaries with powerful purpose-built XDR, cyber risk exposure management, and zero trust capabilities Learn more Extend Your Team Extend Your Team.

Cyber Risk

Cyber Risk Risk Cyber threats Artificial Intelligence

Why MSSPs Must Prioritize Cyber Risk Quantification in 2025

Centraleyes

JUNE 9, 2025

Have you ever had a client ask, “How much risk are we facing?” They want risk explained in clear, unambiguous terms—and most of all, they want numbers. Cyber Risk Quantification (CRQ) helps MSSPs turn security work into real business value. What Is Cyber Risk Quantification?

Cyber Risk

Cyber Risk Risk Insurance Cyber Insurance

Why I Refused to Say “People Are the Weakest Link in Cyber”

Jane Frankland

JUNE 24, 2025

The UK Government’s refreshed Cyber Governance Code of Practice sets a clear direction with guidance, and is holding boards accountable for human cyber risk. I’m approaching this from my role with OutThink , the Cybersecurity Human Risk Management platform I proudly represent as an advisor and brand ambassador.

Cyber Risk

Cyber Risk Security Awareness Risk Government

Google's AI Trends Report: Key Insights and Cybersecurity Implications

SecureWorld News

FEBRUARY 25, 2025

Deepfake phishing, AI-generated malware, and automated spear-phishing campaigns are already on the rise. From the report: "Generative AI is being used to create highly convincing phishing emails, fake voices, and even deepfake videosmaking social engineering attacks more difficult to detect.

Cybersecurity

Cybersecurity Social Engineering Artificial Intelligence Cyber threats

The Hidden Risk in Enterprise Security: Are Big Firms Too Reliant on the Wrong Providers?

Jane Frankland

JULY 22, 2025

Could this mean that large enterprises are actually more at risk than smaller ones? The irony is stark: choosing a partner based on who’s safest to blame—not who’s best at protection—can increase the risk of a breach in the first place. Challenge Procurement-Driven Security Decisions Cyber risk leaders (CIOs, CISOs, CTOs etc.)

Risk

Risk Cyber threats Cybersecurity CISO

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

This shift is expected to place significant pressure on organizations that haven’t yet developed trusted data to manage risk effectively. To mitigate risks, businesses will invest in modern, privacy-enhancing technologies (PETs), such as trusted execution environments (TEEs) and fully homomorphic encryption (FHE).

Cybersecurity

Cybersecurity CISO Risk Government

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

Jane Frankland

APRIL 15, 2025

Instead of focusing on accessible, impactful solutions like human risk management, we gravitate toward shiny new technologiestools and systems that feel exciting, measurable, and comfortably within our domain of expertise. The hard truth is that technology alone cant fix the root causes of cyber risk.

Risk

Risk Technology Cybersecurity Security Awareness

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

SecureWorld News

JUNE 9, 2025

Additionally, a distributed workforce, ranging from remote maintenance technicians to cabin crews, multiplies entry points for social-engineering tactics like phishing. Comprehensive risk assessments across information and operational technology (OT) systems lay the groundwork for targeted defenses.

Cybersecurity

Cybersecurity Social Engineering Computers and Electronics Risk

Cyber Risk Management Strategy: How to Plan

Security Boulevard

JUNE 18, 2025

Whether it’s stolen data, ransomware, or phishing, attacks are becoming more frequent and severe. The post Cyber Risk Management Strategy: How to Plan appeared first on Security Boulevard. Online threats are everywhere, and no organization is safe from them. That’s why having a clear.

Cyber Risk

Cyber Risk Risk Phishing Ransomware

Protecting Oil and Gas Industry Infrastructure: Strategies for Resilience

SecureWorld News

JANUARY 16, 2025

Regularly updating and patching systems, including antivirus software, firewalls, and SCADA networks, can mitigate this risk. This significantly reduces the risk of unauthorized access. Sophisticated adversaries: Nation-state actors, cybercriminals, and hacktivists are leveraging advanced tactics to target this sector.

Energy and Utilities

Energy and Utilities IoT Backups Threat Detection

Cybersecurity Governance: The Road Ahead in an Era of Constant Evolution

SecureWorld News

FEBRUARY 17, 2025

We have moved beyond traditional compliance-driven security models to risk-based approaches, integrating cybersecurity into enterprise risk management (ERM) frameworks. This led to a reactive approach where organizations were more focused on regulatory adherence than on actual security risk management.

Government

Government Cybersecurity CISO Risk

Romantic Lawsuit for Two? Don't Let Cybercriminals Scam You this Valentine's Day

SecureWorld News

FEBRUARY 14, 2025

Avoid phishing emails and messages You may receive emails or texts with fake Valentine's Day deals, electronic greeting cards (e-cards), or delivery notifications. Charity phishing often involves a personal plea for help from an individual, but it can be more sophisticated.

Scams

Scams Cybercrime Phishing Social Engineering

Qantas: Breach affects 6 million people, “significant” amount of data likely taken

Malwarebytes

JULY 2, 2025

The breach at a third party provider is extra painful since Qantas concluded an uplift of third and fourth-party cyber-risk governance processes in 2024. They target large corporations and their third-party IT providers, which means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk.

Social Engineering

Social Engineering Cyber Risk Data breaches Passwords

How to Build an Effective Security Awareness Program

Trend Micro

JUNE 26, 2025

Move faster than your adversaries with powerful purpose-built XDR, cyber risk exposure management, and zero trust capabilities Learn more Extend Your Team Extend Your Team.

Security Awareness

Security Awareness Cyber Risk Risk Phishing

Cisco Contributes to Cyber Hard Problems Report

Cisco Security

JULY 7, 2025

During his time with Cisco and at Robust Intelligence before that, Hyrum has been on a self-proclaimed crusade to get people to understand the cybersecurity risks from AI/ML. Nguyen also praised Hyrum for his contribution in “one of the fastest-emerging areas of cyber risk.

Cyber Risk

Cyber Risk Media Risk Cybersecurity

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

Security Boulevard

MARCH 21, 2025

Check out key findings and insights from the Tenable Cloud AI Risk Report 2025. In addition, find out how AI is radically transforming cyber crime. And get the latest on open source software security; cyber scams; and IoT security. Plus, get fresh guidance on how to transition to quantum-resistant cryptography.

Risk

Risk IoT Cybersecurity Manufacturing

OT Under Siege No More? Fortinet Report Shows Improving Landscape

SecureWorld News

JULY 17, 2025

This trend reflects increasing awareness of OT cyber risk and the need for executive-level accountability," Fortinet notes. Alarmingly, AI-powered cybercrime is accelerating, with adversaries using it to scale phishing and evade detection.

CISO

CISO Cyber Risk Risk CSO

GUEST ESSAY: Ponemon study warns: AI-enhanced deepfake attacks taking aim at senior execs

The Last Watchdog

APRIL 22, 2025

security professionals, highlighting a few worrisome findings: Deepfake risks increasingly target vulnerable board members and executives. Case in point: 59% of respondents said it is very difficult to detect deepfake attacks, and the majority have low confidence in their executives ability to recognize a deepfake risk.

Authentication

Authentication Social Engineering Technology Media

Story of the Year: global IT outages and supply chain attacks

SecureList

DECEMBER 9, 2024

This incident serves as a stark reminder of the critical risks posed by global IT disruptions and supply chain weaknesses. This case underscores the serious risk that social engineering and supply chain attacks pose to open-source projects. The issue serves as a reminder of the potential risks inherent in widely used software.

Internet

Internet Internet Risk Social Engineering

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

Jane Frankland

MAY 3, 2025

Allegedly orchestrated by the same group known as Scattered Spider, these attacks highlight the significant challenges even the most respected and established brands face in defending against modern cyber threats. Cybersecurity isnt just an IT problem; its central to risk management, operational continuity, and customer trust.

Cyber Attacks

Cyber Attacks Retail Cyber threats Backups

News Alert: INE Security outlines top 5 training priorities emerging from RSAC 2025

The Last Watchdog

MAY 13, 2025

AI Risk Management Becomes Business-Critical AI security solutions dominated RSAC this year, signaling that as organizations adopt advanced response technologies, comprehensive training must keep pace. This gap highlights a growing disconnect between perceived and actual risk in cloud deployments.

Architecture

Architecture Risk Cybersecurity Cyber Attacks

The Role and Benefits of AI in Cybersecurity

SecureWorld News

APRIL 13, 2025

It helps identify anomalies and potential third-party risks in real-time. These platforms can automatically recognize and classify threatening behavior such as suspicious network activity, phishing attacks, and transmission of malware. Here's an example that shows how Google performs phishing detection.

Cybersecurity

Cybersecurity Artificial Intelligence Threat Detection Cyber threats

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

When data breaches escalate, cyber-attacks grow more sophisticated, nation states ramp up their digital warfare, and regulations tighten the noose, staying ahead isnt just an optionits your only line of defence. Amid a backdrop of increasingly sophisticated and frequent cyberattacks, APTs are a growing concern for CISOs and cyber risk owners.

CISO

CISO Cyber Risk Risk Encryption

Innovation in the Fast Lane: Lessons from Motorsport and Cybersecurity

Trend Micro

JUNE 10, 2025

Move faster than your adversaries with powerful purpose-built XDR, cyber risk exposure management, and zero trust capabilities Learn more Extend Your Team Extend Your Team.

Cybersecurity

Cybersecurity Cyber Risk Risk Artificial Intelligence

Cybersecurity Snapshot: CISA’s Best Cyber Advice on Securing Cloud, OT, Apps and More

Security Boulevard

MAY 2, 2025

Back in September 2024, CISA sounded the alarm on critical infrastructure organizations susceptibility to common, well-known attack methods in its CISA Analysis: Fiscal Year 2023 Risk and Vulnerability Assessments report. Coast Guard conducted in 2023. Enforce multi-factor authentication across all software development environments.

Cybersecurity

Cybersecurity Software Cyber Risk Risk

Securing Critical Infrastructure Against Cyberattacks

SecureWorld News

JULY 1, 2025

Generative AI sustains sophisticated, multi-channel social engineering for phishing campaigns to gain access privileges to critical infrastructure. Supply chain weaknesses compound the risk. A decade after the Ukraine blackout began with a spear-phishing email, social engineering remains potent. allies are taking.

Social Engineering

Social Engineering Engineering Phishing Healthcare

Authorities Unsure if Spain, Portugal Power Outage Was a Cyber Attack

SecureWorld News

APRIL 29, 2025

Whether it was caused by a sophisticated cyberattack or an ordinary technical failure, the outcome remains the same: millions disrupted, critical services compromised, and economic damage," said Kip Boyle , Instructor and vCISO at Cyber Risk Opportunities LLC.

Cyber Attacks

Cyber Attacks Energy and Utilities Telecommunications Government

Ensuring Secure Container Deployments with Image Signature Verification

Trend Micro

JUNE 10, 2025

Move faster than your adversaries with powerful purpose-built XDR, cyber risk exposure management, and zero trust capabilities Learn more Extend Your Team Extend Your Team.

Cyber Risk

Cyber Risk Risk Network Security Insurance

Tech Show London: Making Dating Scams Less Attractive

IT Security Guru

MARCH 18, 2025

Deepfakes join classic phishing and spear phishing as significant cyber risks for online daters. We have to rely on tech to spot this as human capabilities are diminishing, said Newman. The answer? In this case, fraudsters are one step ahead. So, what should people do to protect themselves?

Scams

Scams Education Artificial Intelligence Media

When Prevention Fails: How Hackers and AI Are Forcing a Cybersecurity Rethink

Jane Frankland

MAY 18, 2025

This platform offers a comprehensive solution for risk assessment, recovery testing, and rapid business restoration post-breach, all while maintaining full compliance. Without deep forensic analysis and clean recovery orchestration, you risk reinfecting your environment during recovery.

Cybersecurity

Cybersecurity Backups Firewall Ransomware

How Data Visualization Helps Prevent Cyber Attacks

Centraleyes

MARCH 20, 2025

Vulnerability Management Heat Maps: Highlighting areas of a system with the highest risk, helping prioritize patching efforts. Supply Chain Risk Monitoring: A financial services firm tracked vendor vulnerabilities through a visualization platform, flagging suppliers with outdated software.

Cyber Attacks

Cyber Attacks Risk Cybersecurity Ransomware

Top Cyber Attacker Techniques, August–October 2024

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. This increase is likely driven by high employee turnover and easy access to phishing kits. Meanwhile, “RansomHub” is rising rapidly due to its attractive ransomware-as-a-service (RaaS) model.

Cyber Attacks

Cyber Attacks Phishing Ransomware Cyber Insurance

Q&A: Cybersecurity in ‘The Intelligent Era’

IT Security Guru

MARCH 26, 2025

Our adversaries are equipped with AI but are not constrained by budget, legal, and ethical factors and will use it against us far beyond phishing and deep fake scenarios for ID compromise led attacks. However, AI is a double-edged sword.

Cybersecurity

Cybersecurity Encryption Threat Detection Authentication

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Centraleyes

MARCH 13, 2025

Enacted in 2017, this regulation is all about minimizing risk in the financial services sector, which, lets face it, is prime real estate for cybercriminals. The program should be tailored to your specific business risks. Insight: Many businesses make the mistake of copying templates without understanding their unique risks.

Cybersecurity

Cybersecurity Financial Services Risk Encryption

Quantum Computing's Impact on Cybersecurity and the Road Ahead

SecureWorld News

FEBRUARY 24, 2025

While quantum power poses risks to traditional encryption, it also opens the door to revolutionary cybersecurity advancements that could redefine how we protect data, detect threats, and secure critical infrastructure.

Cybersecurity

Cybersecurity Encryption Cyber threats Threat Detection

AI in the Enterprise: Key Findings from the ThreatLabz 2025 AI Security Report

Security Boulevard

MARCH 20, 2025

It examines the rising risks associated with AI, from cybercriminals weaponizing AI for more sophisticated attacks to the security implications of recent AI advancements like the open source model DeepSeek, while providing best practices for mitigating these risks.This blog post summarizes several highlights from the report.

Social Engineering

Social Engineering Phishing Risk Insurance

2025 Supply Chain Threat Landscape: AI, APIs, and the Weakest Link

SecureWorld News

JULY 10, 2025

Manufacturing and logistics firms, increasingly digitized and AI-driven, are acutely at risk: state-aligned hackers are "infiltrating the digital arteries of commerce" from ports to payment systems. This IT service partner hasn't enabled multi-factor authentication, or an employee at a supplier who falls for a phishing email.

Manufacturing

Manufacturing Software Energy and Utilities Risk

Navigating the Unique Cybersecurity Challenges for SMBs

SecureWorld News

APRIL 30, 2025

Strategic Advisor & vCISO, Sentinel Technologies; and moderator Dave Malcom , President & CEO, Malcom Risk Advisors. The cost and impact of cyber breaches Learn just how devastating a single cyber incident can be for a small or medium business, including real-world examples and financial impact analysis.

Small Business

Small Business Cybersecurity CISO Risk

News alert: Living Security report reveals that just 10% of employees drive 73% of cyber risk

News alert: SpyCloud study shows Darknet identity exploitation arising to become a primary cyber risk

Trending Sources

How Spread Betting Platforms Safeguard Traders Against Cyber Risks

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

See No Risk, Hear No Warning, Speak No Breach: The Cybersecurity Trap for Small Businesses

AI Dilemma: Emerging Tech as Cyber Risk Escalates

Why MSSPs Must Prioritize Cyber Risk Quantification in 2025

Why I Refused to Say “People Are the Weakest Link in Cyber”

Google's AI Trends Report: Key Insights and Cybersecurity Implications

The Hidden Risk in Enterprise Security: Are Big Firms Too Reliant on the Wrong Providers?

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Cybersecurity’s Comfort Zone Problem: Are you Guilty of it?

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

Cyber Risk Management Strategy: How to Plan

Protecting Oil and Gas Industry Infrastructure: Strategies for Resilience

Cybersecurity Governance: The Road Ahead in an Era of Constant Evolution

Romantic Lawsuit for Two? Don't Let Cybercriminals Scam You this Valentine's Day

Qantas: Breach affects 6 million people, “significant” amount of data likely taken

How to Build an Effective Security Awareness Program

Cisco Contributes to Cyber Hard Problems Report

Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption

OT Under Siege No More? Fortinet Report Shows Improving Landscape

GUEST ESSAY: Ponemon study warns: AI-enhanced deepfake attacks taking aim at senior execs

Story of the Year: global IT outages and supply chain attacks

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

News Alert: INE Security outlines top 5 training priorities emerging from RSAC 2025

The Role and Benefits of AI in Cybersecurity

Secure Communications: Relevant or a Nice to Have?

Innovation in the Fast Lane: Lessons from Motorsport and Cybersecurity

Cybersecurity Snapshot: CISA’s Best Cyber Advice on Securing Cloud, OT, Apps and More

Securing Critical Infrastructure Against Cyberattacks

Authorities Unsure if Spain, Portugal Power Outage Was a Cyber Attack

Ensuring Secure Container Deployments with Image Signature Verification

Tech Show London: Making Dating Scams Less Attractive

When Prevention Fails: How Hackers and AI Are Forcing a Cybersecurity Rethink

How Data Visualization Helps Prevent Cyber Attacks

Top Cyber Attacker Techniques, August–October 2024

Q&A: Cybersecurity in ‘The Intelligent Era’

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Quantum Computing's Impact on Cybersecurity and the Road Ahead

AI in the Enterprise: Key Findings from the ThreatLabz 2025 AI Security Report

2025 Supply Chain Threat Landscape: AI, APIs, and the Weakest Link

Navigating the Unique Cybersecurity Challenges for SMBs

Stay Connected