Cyber threats, Hacking and Information Security

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Krebs on Security

DECEMBER 19, 2024

The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey. “We have been playing cat and mouse for a while with these guys,” said Matt Sciberras , chief information security officer at Invicti.

Hacking

Hacking Cybercrime Advertising Data breaches

Spike in Palo Alto Networks scanner activity suggests imminent cyber threats

Security Affairs

APRIL 2, 2025

Given the unusual nature of this activity, organizations with exposed Palo Alto Networks systems should review their March logs and consider performing a detailed threat hunt on running systems to identify any signs of compromise. GreyNoise concludes.

Cyber threats

Cyber threats Hacking Information Security

Attackers could hack smart solar systems and cause serious damages

Security Affairs

FEBRUARY 28, 2025

The German news outlet DW interviewed hackers who’ve exposed security flaws in rooftop installations and solar power plants worldwide. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,smart solar systems)

Hacking

Hacking Passwords Risk Cyber threats

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Security Affairs

DECEMBER 26, 2023

Cybersecurity company Resecurity has published the 2024 Cyber Threat Landscape Forecast. Resecurity, a Los Angeles-based cybersecurity company protecting Fortune 100 and government agencies worldwide, has compiled a comprehensive forecast outlining the imminent threats and novel security challenges anticipated in the upcoming year.

Cyber threats

Cyber threats Energy and Utilities Cyber Attacks Artificial Intelligence

Cyber Threat Trends Dashboard

Security Affairs

JANUARY 28, 2020

Marco Ramilli published the Cyber Threat Trends Dashbo a rd , a useful tool that will allow us to better understand most active threats in real time. Information sharing is one of the most important activity that cybersecurity researchers do on daily basis. Introduction. Description. Pierluigi Paganini.

Cyber threats

Cyber threats Advertising Malware Antivirus

Operation Secure: INTERPOL dismantles 20,000+ malicious IPs in major cybercrime crackdown

Security Affairs

JUNE 11, 2025

INTERPOL continues to support practical, collaborative action against global cyber threats. Operation Secure has once again shown the power of intelligence sharing in disrupting malicious infrastructure and preventing large-scale harm to both individuals and businesses.” said Neal Jetton, INTERPOL’s Director of Cybercrime.

Cybercrime

Cybercrime Data collection Scams Cyber threats

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

As the device was not being monitored, the victim organisation’s security team were unaware of the increase in malicious Server Message Block (SMB) traffic from the webcam to the impacted server, which otherwise may have alerted them. [1] 1] Akira was subsequently able to encrypt files across the victims network.”

Ransomware

Ransomware IoT Encryption Passwords

BrandPost: Scary Cyber Threats and Sweet Solutions

CSO Magazine

OCTOBER 26, 2021

What is even scarier: Not having systems in place to protect against malware and other cyber threats. Cyber Threats That Frighten Even The Experts. It's not just malware that poses a threat to an enterprise's systems. Sweet Solutions to Cyber Threats. The CIS Community Defense Model v2.0

Cyber threats

Cyber threats Architecture Malware Passwords

Sweet Treats, Sour Breach: Cyberattack Hits Krispy Kreme

SecureWorld News

DECEMBER 12, 2024

The details of the Krispy Kreme hack are still emerging, but the companys Form 8-K filing brought the incident to light, offering a rare glimpse into the challenges businesses face when their systems are compromised. The Krispy Kreme hack is a sobering reminder that no industry is immune to cyber threats.

Password Management

Password Management Passwords CISO Cybersecurity

Operation Serengeti: INTERPOL arrested 1,006 suspects in 19 African countries

Security Affairs

NOVEMBER 27, 2024

. “Operation Serengeti (2 September – 31 October) targeted criminals behind ransomware, business email compromise (BEC), digital extortion and online scams – all identified as prominent threats in the 2024 Africa Cyber Threat Assessment Report.” ” reads the press release published by INTERPOL.

Scams

Scams Cybercrime Ransomware Cyber threats

Silent Ransom Group targeting law firms, the FBI warns

Security Affairs

MAY 24, 2025

“The cyber threat actor Silent Ransom Group (SRG), also known as Luna Moth, Chatty Spider, and UNC3753, is targeting law firms using information technology (IT) themed social engineering calls, and callback phishing emails, to gain remote access to systems or devices and steal sensitive data to extort the victims.”

Social Engineering

Social Engineering Antivirus Phishing Engineering

A surge in Pro-Russia cyberattacks after decision to monitor North Korean Troops in Ukraine

Security Affairs

NOVEMBER 10, 2024

Cyber attacks by pro-Russian hacktivist groups on our country have occurred sporadically in the past, but have become more frequent since North Korea sent troops to Russia and entered the war in Ukraine.” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, South Korea)

DDOS

DDOS Government Cyber threats Hacking

Russia-linked threat actors threaten the UK and its allies, minister to say

Security Affairs

NOVEMBER 25, 2024

. “Given the scale of that hostility, my message to members today is clear: no-one should underestimate the Russian cyber threat to NATO. The threat is real,” he will tell representatives of the NATO countries. They also rely on non-GRU actors, including cybercriminals, to carry out their operations.

Cyber Attacks

Cyber Attacks Government Hacking Cyber threats

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

Ransomware is undoubtedly one of the most unnerving phenomena in the cyber threat landscape. Numerous strains of this destructive code have been the front-page news in global computer security chronicles for almost a decade now, with jaw-dropping ups and dramatic downs accompanying its progress. inch diskettes.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Former British Prime Minister Liz Truss ‘s phone was allegedly hacked by Russian spies

Security Affairs

OCTOBER 30, 2022

According to the Daily Mail, Former British Prime Minister Liz Truss ‘s personal phone was hacked by Russian spies. The personal mobile phone of British Prime Minister Liz Truss was hacked by cyber spies suspected of working for the Kremlin, the Daily Mail reported. SecurityAffairs – hacking, Liz Truss).

Hacking

Hacking Mobile Government Cyber threats

Internet Archive Hacked, Introducing The AI Toilet Camera

Security Boulevard

OCTOBER 27, 2024

We explore these technological advancements alongside other unusual tech innovations, touching upon security […] The post Internet Archive Hacked, Introducing The AI Toilet Camera appeared first on Shared Security Podcast. The post Internet Archive Hacked, Introducing The AI Toilet Camera appeared first on Security Boulevard.

Internet

Internet Internet Hacking Data breaches

5 Ways artificial intelligence Is Being Used to Keep Sensitive Information Secure

Security Affairs

FEBRUARY 19, 2020

The volume of cyber threats is massive, especially since many hackers can automate the job. AI, however, is the best multitasker there is, able to find malicious threats instantly and alert humans or lock the attacker out. SecurityAffairs – artificial intelligence , sensitive information). Pierluigi Paganini.

Artificial Intelligence

Artificial Intelligence Information Security Passwords Encryption

CEO-Level Guide to Prevent Data Hacking Technologies & Incidents

Security Affairs

JUNE 11, 2021

The current era, where all data is digital, the threats of fraud, breach and data sprawl are more of a reality than ever. In these times, organizations not only take a hit because of the breached data and cyber threats, but also are heavily fined under global privacy regulations. SecurityAffairs – hacking, cyber threats).

Technology

Technology Hacking Cyber threats Software

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

A new data leak that appears to have come from one of China’s top private cybersecurity firms provides a rare glimpse into the commercial side of China’s many state-sponsored hacking groups. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Hacking Cyber threats Mobile

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency

Cryptocurrency Hacking Malware Data breaches

Coyote Banking Trojan targets Brazilian users, stealing data from 70+ financial apps and websites

Security Affairs

FEBRUARY 4, 2025

. “Consequently, it highlights the critical need for robust security measures for both individuals and institutions to safeguard against evolving cyber threats.” ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,malware)

Banking

Banking Malware Antivirus Cyber threats

Elon Musk ’s DOGE team granted ‘full access’ to sensitive Treasury systems. What are the risks?

Security Affairs

FEBRUARY 3, 2025

This system handles sensitive financial transactions, and unauthorized access could lead to misuse, manipulation, or cyber threats. Given its role in national financial infrastructure, any unauthorized access could undermine economic stability, public trust, and national security.

Risk

Risk Surveillance Cyber threats Marketing

Threat actors hacked Taiwan-based Chunghwa Telecom

Security Affairs

MARCH 4, 2024

Threat actors claim they have stolen 1.7 Leaked data, including a contract between the Navy and Chunghwa Telecom, are available for sale on a dark web hacking forum, Broadcaster TVBS first reported. We have asked the contractor involved to strengthen its information security control to prevent any further incidents.”

Hacking

Hacking Government Cyber threats Cyber Attacks

Norway PM warns of Russia cyber threat to oil and gas industry

Security Affairs

OCTOBER 24, 2022

Researchers pointed out that the petroleum industry only started this summer by introducing cyber security measures requested by the 2019 Security Act. SecurityAffairs – hacking, Norway). The post Norway PM warns of Russia cyber threat to oil and gas industry appeared first on Security Affairs.

Cyber threats

Cyber threats Cyber Attacks Hacking Risk

Deloitte-NASCIO Study: AI and Cyber Threats Reshape the Landscape

SecureWorld News

OCTOBER 2, 2024

Conducted in spring 2024, the study captures insights from Chief Information Security Officers of all 50 U.S. states and the District of Columbia, marking a period where the impact of COVID-19 has subsided yet new threats have surfaced. Strengthen controls for third parties.

Cyber threats

Cyber threats CISO Digital transformation Artificial Intelligence

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

The government agencies released a guide that advises telecom and critical infrastructure defenders on best practices to strengthen network security against PRC-linked and other cyber threats. The agencies recommend robust measures to protect enterprise networks against cyber threats.

Telecommunications

Telecommunications Government Mobile Cyber threats

July 2024 ransomware attack on the City of Columbus impacted 500,000 people

Security Affairs

NOVEMBER 4, 2024

“The City of Columbus’ continuing investigation of a July 18 cybersecurity incident has found that a foreign cyber threat actor attempted to disrupt the city’s IT infrastructure, in a possible effort to deploy ransomware and solicit a ransom payment from the city. ” reads the update published by the City.

Ransomware

Ransomware Identity Theft Data breaches Cyber threats

Report Reveals Top Cyber Threats, Trends of 2023 First Half

SecureWorld News

JUNE 13, 2023

"We are continuing to observe an unyielding surge in the volume of cyberthreats, including advanced malware, botnets, ransomware, cryptojacking, and more," said Callie Guenther, Senior Manager of Cyber Threat Research at Critical Start, in a press release.

Cyber threats

Cyber threats Malware Phishing Penetration Testing

From Risk Assessment to Action: Improving Your DLP Response

Security Affairs

OCTOBER 25, 2024

In short, these assessments are a crucial part of any effective cybersecurity strategy, ensuring comprehensive protection from a variety of cyber threats and compliance with data protection regulatory standards.

Risk

Risk Cybersecurity Data breaches Cyber threats

CERT-UA reports attacks in March 2025 targeting Ukrainian agencies with WRECKSTEEL Malware

Security Affairs

APRIL 4, 2025

. “The Ukrainian government’s computer emergency response team, CERT-UA, is taking systematic measures to accumulate and analyze data on cyber incidents in order to provide up-to-date information on cyber threats.” ” reads the report published by CERT-UA.

Malware

Malware Cyber threats Government Hacking

Security Affairs newsletter Round 514 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 8, 2025

DoJ charges 12 Chinese nationals for state-linked cyber operations Chinese Lotus Blossom APT targets multiple sectors with Sagerunex backdoor China-linked APT Silk Typhoon targets IT Supply Chain Hunters International gang claims the theft of 1.4

Data breaches

Data breaches Hacking Cybercrime Artificial Intelligence

Nation-state actors from Russia, China, Iran, and North Korea target Canada

Security Affairs

NOVEMBER 19, 2020

A report published by the Canadian Centre for Cyber Security, titled “ National Cyber Threat Assessment 2020 ,” warns of risks associated with state-sponsored operations from China, Russia, Iran, and North Korea. Working together, we can increase Canada’s resilience against cyber threats.”

Cyber threats

Cyber threats Government Hacking Risk

Malicious Minecraft mods distributed by the Stargazers DaaS target Minecraft gamers

Security Affairs

JUNE 19, 2025

However, this openness has also made it a target for cyber threats. Threat actors employ a multi-stage infection chain, with the first two stages written in Java and requiring the Minecraft runtime to execute, making the threat highly targeted at the game’s user base. ” reads the report published by Check Point.

Malware

Malware VPN Cyber threats Hacking

Russia-linked Turla APT hacked European government organization

Security Affairs

OCTOBER 29, 2020

Russia-linked APT Turla has hacked into the systems of an undisclosed European government organization according to Accenture. According to a report published by Accenture Cyber Threat Intelligence (ACTI), Russia-linked cyber-espionage group Turla has hacked into the systems of an undisclosed European government organization.

Government

Government Hacking Advertising Encryption

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

Security Affairs

APRIL 30, 2025

” Experts conclude that RomCom poses a major cyber threat due to its technical sophistication, strong operational security, and targeted attacks on critical organizationsindicating risks that go far beyond typical financially driven cybercrime.

Encryption

Encryption Ransomware Malware Phishing

The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning

Security Affairs

APRIL 28, 2025

It served as a marketplace for threat actors to buy and sell stolen data, hacking tools, and compromised credentials. The forum was founded by Conor Brian Fitzpatrick , known online as “ pompompurin ,” who had previously claimed responsibility for the 2021 FBI email hack.

Risk

Risk Hacking Cybercrime Scams

US CISA published a guide to better use the MITRE ATT&CK framework

Security Affairs

JUNE 5, 2021

CISA announced the availability of a new guide for cyber threat intelligence experts on the use of the MITRE ATT&CK framework. Cybersecurity and Infrastructure Security Agency (CISA) this week released a new guide for cyber threat intelligence experts on the use of the MITRE ATT&CK framework.

Cyber threats

Cyber threats Cybersecurity Engineering Hacking

Activision Hack Exposes Employee Data and 'Call of Duty' Information

SecureWorld News

FEBRUARY 23, 2023

Also worth noting that the Threat Actor(s) did attempt to phish other employees. Activision has stated that the security of its data is paramount and that it has comprehensive information security protocols in place to ensure its confidentiality. Other employees did not fall for the phish.

Hacking

Hacking Phishing Data breaches Information Security

Top cybersecurity firm FireEye hacked by a nation-state actor

Security Affairs

DECEMBER 8, 2020

The cyber security giant FireEye announced that it was hacked by nation-state actors, likely Russian state-sponsored hackers. The company made the headlines because it was the victim of a hack, and experts blame Russia-linked hackers for the attack. launched an investigation into the hack. Pierluigi Paganini.

Hacking

Hacking Cybersecurity Penetration Testing Cyber threats

Cybersecurity Policy Writing Hack: Use a Framework

SecureWorld News

NOVEMBER 1, 2021

Executive leadership could have made this request due to increasing cyber threats. Cybersecurity frameworks as a basis for security policy. Marcia Mangold, Information Security Manager for GRC at Emergent Holdings and a SecureWorld Advisory Council member, may have just the hack for you.

Hacking

Hacking Cybersecurity Cyber threats Technology

Russian APT Nomadic Octopus hacked Tajikistani carrier

Security Affairs

MAY 1, 2023

Russian APT group Nomadic Octopus hacked a Tajikistani carrier to spy on government officials and public service infrastructures. ” reads the report published by cyber threat intelligence firm Prodaft.

Hacking

Hacking Telecommunications Government Firewall

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Security Affairs

OCTOBER 6, 2021

and its cyber threat intelligence and R&D unit, HUNTER, drained the Agent Tesla Command & Control Servers (C2) and extracted over 950GB of logs containing compromised Internet users credentials, files and other sensitive information stolen by malicious code. SecurityAffairs – hacking, malware).

Cyber threats

Cyber threats Engineering Malware Financial Services

Crazy Evil gang runs over 10 highly specialized social media scams

Security Affairs

FEBRUARY 3, 2025

These factors make it a persistent cyber threat. “Threat groups like Crazy Evil are resilient to identification and disruption the biggest threat to their operations comes from internal strife. .” The cybercrime gang focused on targeting the Web3 and decentralized finance industry.

Scams

Scams Media Cryptocurrency Cybercrime

Lockbit ransomware gang claims to have hacked Ministry of Justice of France

Security Affairs

JANUARY 27, 2022

I have contacted the French Cyber Threat Intelligence Analyst Anis Haboubi for a comment. If the security breach will be confirmed it could have a significant impact on French authorities. SecurityAffairs – hacking, Lockbit ransomware). The deadline for the payment has been fixed on 10 Feb, 2022 11:20:00.

Ransomware

Ransomware Hacking Government Cyber threats

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Spike in Palo Alto Networks scanner activity suggests imminent cyber threats

Trending Sources

Attackers could hack smart solar systems and cause serious damages

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Cyber Threat Trends Dashboard

Operation Secure: INTERPOL dismantles 20,000+ malicious IPs in major cybercrime crackdown

Akira ransomware gang used an unsecured webcam to bypass EDR

BrandPost: Scary Cyber Threats and Sweet Solutions

Sweet Treats, Sour Breach: Cyberattack Hits Krispy Kreme

Operation Serengeti: INTERPOL arrested 1,006 suspects in 19 African countries

Silent Ransom Group targeting law firms, the FBI warns

A surge in Pro-Russia cyberattacks after decision to monitor North Korean Troops in Ukraine

Russia-linked threat actors threaten the UK and its allies, minister to say

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Former British Prime Minister Liz Truss ‘s phone was allegedly hacked by Russian spies

Internet Archive Hacked, Introducing The AI Toilet Camera

5 Ways artificial intelligence Is Being Used to Keep Sensitive Information Secure

CEO-Level Guide to Prevent Data Hacking Technologies & Incidents

New Leak Shows Business Side of China’s APT Menace

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Coyote Banking Trojan targets Brazilian users, stealing data from 70+ financial apps and websites

Elon Musk ’s DOGE team granted ‘full access’ to sensitive Treasury systems. What are the risks?

Threat actors hacked Taiwan-based Chunghwa Telecom

Norway PM warns of Russia cyber threat to oil and gas industry

Deloitte-NASCIO Study: AI and Cyber Threats Reshape the Landscape

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

July 2024 ransomware attack on the City of Columbus impacted 500,000 people

Report Reveals Top Cyber Threats, Trends of 2023 First Half

From Risk Assessment to Action: Improving Your DLP Response

CERT-UA reports attacks in March 2025 targeting Ukrainian agencies with WRECKSTEEL Malware

Security Affairs newsletter Round 514 by Pierluigi Paganini – INTERNATIONAL EDITION

Nation-state actors from Russia, China, Iran, and North Korea target Canada

Malicious Minecraft mods distributed by the Stargazers DaaS target Minecraft gamers

Russia-linked Turla APT hacked European government organization

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning

US CISA published a guide to better use the MITRE ATT&CK framework

Activision Hack Exposes Employee Data and 'Call of Duty' Information

Top cybersecurity firm FireEye hacked by a nation-state actor

Cybersecurity Policy Writing Hack: Use a Framework

Russian APT Nomadic Octopus hacked Tajikistani carrier

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Crazy Evil gang runs over 10 highly specialized social media scams

Lockbit ransomware gang claims to have hacked Ministry of Justice of France

Stay Connected