Cyber threats and Ransomware - Cyber Security Informer

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

By correlating this data with programs, certifications and threats, businesses can manage their defenses with full context. Deepfake scams will escalate, with threat actors using AI to create convincing impersonations of executives, risking personal and corporate brands. This empowers them to proactively prioritize what matters most.

Cyber threats

Cyber threats CISO IoT Phishing

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. Cybersecurity researchers at S-RM team discovered a novel attack technique used by the Akira ransomware gang. Realizing EDR was active, they pivoted by scanning the network for vulnerable devices.

Ransomware

Ransomware IoT Encryption Passwords

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide. All they need is one successful attempt to gain initial access."

Ransomware

Ransomware IoT Encryption Social Engineering

Russia Charges Notorious Ransomware Developer in Rare Cybercrime Case

SecureWorld News

DECEMBER 3, 2024

In a surprising move related to international cybercrime, Russian authorities have charged Mikhail Matveev, also known as "Wazawaka," with creating ransomware to extort commercial organizations, according to Russian media outlet RIA. His alleged exploits include: The 2021 attack on Washington, D.C.'s Multiple attacks on critical U.S.

Cybercrime

Cybercrime Ransomware Healthcare Cryptocurrency

Report Shows Ransomware Has Grown 41% for Construction Industry

Digital Shadows

NOVEMBER 12, 2024

Ransomware Activity Targeting the Construction Sector Ransomware remains the biggest threat to the sector, as demonstrated by the 41% rise in organizations appearing on data-leak sites over the past year.

Ransomware

Ransomware Phishing Cyber threats Malware

July 2024 ransomware attack on the City of Columbus impacted 500,000 people

Security Affairs

NOVEMBER 4, 2024

The July 2024 ransomware attack that hit the City of Columbus, Ohio, exposed the personal and financial data of 500,000 individuals. On July 18, 2024, the City of Columbus, Ohio, suffered a cyber attack that impacted the City’s services. The city added that the attack was successfully thwarted, and no systems were encrypted.

Ransomware

Ransomware Identity Theft Data breaches Cyber threats

Threat Landscape Report: Uncovering Critical Cyber Threats to Hospitality and Recreation

Digital Shadows

MARCH 12, 2025

Between September 1, 2024, and February 28, 2025, threat actors ramped up efforts to exploit this sector through spearphishing, impersonation campaigns, ransomware, and vulnerabilities in external remote services. One ransomware group, Akira, has demonstrated a specific focus on casinos.

Cyber threats

Cyber threats Cryptocurrency IoT Ransomware

SMBs Know They’re At Risk, but Most Aren’t Embracing AI

Security Boulevard

MAY 8, 2025

A survey by CrowdStrike finds the gap between SMB awareness of cyber threats and efforts by them to protect themselves is widening, with not enough of them spending the money needed on AI and other tools to defend against ransomware and other attacks.

Risk

Risk Cyber threats Ransomware Data privacy

Operation Serengeti: INTERPOL arrested 1,006 suspects in 19 African countries

Security Affairs

NOVEMBER 27, 2024

“Operation Serengeti (2 September – 31 October) targeted criminals behind ransomware, business email compromise (BEC), digital extortion and online scams – all identified as prominent threats in the 2024 Africa Cyber Threat Assessment Report.” ” reads the press release published by INTERPOL.

Scams

Scams Cybercrime Ransomware Cyber threats

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

The Last Watchdog

OCTOBER 23, 2024

As small businesses increasingly depend on digital technologies to operate and grow, the risks associated with cyber threats also escalate. Regular backups ensure that businesses can recover quickly from ransomware attacks or other data loss incidents. Cary, NC, Oct.

Small Business

Small Business Data breaches Backups Passwords

Ransomware Scum — Out For Blood: NYBCe is Latest Victim

Security Boulevard

JANUARY 31, 2025

Bloody hell: New York Blood Center Enterprises crippled by ransomware scrotes unknown. The post Ransomware Scum Out For Blood: NYBCe is Latest Victim appeared first on Security Boulevard.

Ransomware

Ransomware Social Engineering Healthcare Data privacy

Leaked Black Basta Chats Expose Ransomware Secrets & Infighting

eSecurity Planet

FEBRUARY 24, 2025

Over 200,000 internal messages from the notorious ransomware group Black Basta have surfaced online exposing deep divisions, ransom negotiations, and internal dysfunction. Cybersecurity experts are now poring over the data, uncovering a rare inside look at how one of the most feared ransomware groups operates and potentially unravels.

Ransomware

Ransomware Phishing Healthcare Cryptocurrency

The Rise of Non-Ransomware Attacks on AWS S3 Data

Thales Cloud Protection & Licensing

FEBRUARY 12, 2025

The Rise of Non-Ransomware Attacks on AWS S3 Data madhav Thu, 02/13/2025 - 04:39 A sophisticated ransomware gang, Codefinger, has a cunning new technique for encrypting data stored in AWS S3 buckets without traditional ransomware tools. Unlike conventional ransomware, the malicious actors dont exfiltrate any data.

Ransomware

Ransomware Encryption Digital transformation Risk

American Water Shuts Down Services After Cybersecurity Breach

eSecurity Planet

OCTOBER 15, 2024

The American Water cyber breach has sparked conversations about the importance of cybersecurity in safeguarding essential services and the growing frequency of cyber threats targeting public utilities. This helps ensure everyone is aware of evolving cyber threats and knows how to respond in case of suspicious activity.

Cybersecurity

Cybersecurity Penetration Testing Cyber threats Firewall

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

SecureWorld News

MARCH 13, 2025

A recent report from Tenable highlights how DeepSeek R1, an open-source AI model, can generate rudimentary malware, including keyloggers and ransomware. Key findings from Tenable's report Tenable's research team investigated DeepSeek R1's ability to generate malicious code, specifically a keylogger and a simple ransomware program.

Malware

Malware Cybersecurity Cyber threats Threat Detection

UK’s Cyber Crime Down in 2024: Better ‘Cyber Hygiene Among Small Businesses

Tech Republic Security

APRIL 15, 2025

A UK government survey of 2024 data shows phishing remains the top cyber threat, ransomware cases doubled, and fewer boards include cyber experts despite steady attack rates.

Small Business

Small Business Cyber threats Phishing Government

World Backup Day: A Clarion Call for Cyber Resilience

SecureWorld News

MARCH 31, 2025

In a digital world defined by ransomware, cloud sprawl, and hybrid infrastructures, the ability to recover data quickly and securely is one of the most important indicators of an organization's cyber resilience. Ransomware's bullseye: your backups Cybercriminals know that if they can destroy your backups, they've won.

Backups

Backups Encryption Mobile CISO

AI Cybersecurity Firm Raises $100 Million to Strengthen National Security

eSecurity Planet

FEBRUARY 18, 2025

Dream, an AI cybersecurity startup, has raised $100 million in a Series B funding round led by Bain Capital Ventures to bolster its mission of defending nations and critical infrastructure from cyber threats. Dreams Cyber Language Model (CLM) is the backbone of its approach.

Cybersecurity

Cybersecurity Cyber threats Government Data privacy

Digital life protection: How Webroot keeps you safe in a constantly changing world

Webroot

FEBRUARY 21, 2025

Cyber threats are no longer just the occasional virus or suspicious email. Phishing scams, ransomware attacks, data breaches, and identity theft are part of a growing list of online dangers that are a daily reality. Secure backup Keeps your critical files safe from data loss or ransomware attacks.

Antivirus

Antivirus Identity Theft Cyber threats Phishing

2025 Top Cyber Threats to Financial Services and How To Mitigate Them

Mitnick Security

MAY 9, 2025

Phishing, ransomware, and insider threats are exposing gaps in outdated defenses and putting customer data at risk. In 2025, financial services firms arent asking if an attack will happen but how to stop it or minimize the fallout when it does.

Financial Services

Financial Services Cyber threats Phishing Ransomware

City of Columbus breach affects around half a million citizens

Malwarebytes

NOVEMBER 4, 2024

A ransomware attack against the City of Columbus, Ohio—which drew public scrutiny following the city government’s attempt to silence a researcher who told the public about the attack—has received a little more detail from an unexpected source: The Attorney General for the state of Maine.

Data breaches

Data breaches Passwords Ransomware Phishing

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

Security Affairs

APRIL 30, 2025

“Analysis of the team’s infrastructures shows that LARVA-290, the individual who obtained intrusion servers for and conducted numerous ransomware attacks, continues to play a critical IT admin role within the Nebulous Mantis team and in RomCom attacks.” .” reads the report published by PRODAFT.

Encryption

Encryption Ransomware Malware Phishing

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

Jane Frankland

MAY 3, 2025

Allegedly orchestrated by the same group known as Scattered Spider, these attacks highlight the significant challenges even the most respected and established brands face in defending against modern cyber threats. Then, the focus of cyber attacks on retailers, and what lessons must be learned by business leaders and customers.

Cyber Attacks

Cyber Attacks Retail Cyber threats Backups

Operation Heart Blocker: International Police Disrupt Phishing Network

SecureWorld News

FEBRUARY 3, 2025

BEC attacks: a growing financial and security risk BEC remains one of the most financially devastating cyber threats, with losses worldwide reaching into the billions. As Operation Heart Blocker disrupts one arm of the phishing ecosystem, it serves as a reminder of the ever-present cyber threats facing businesses today.

Phishing

Phishing Cybercrime Scams Authentication

Zero Trust: Your Best Friend in the Age of Advanced Threats

SecureWorld News

NOVEMBER 6, 2024

In today's digital landscape, cyber threats are more advanced than ever, and traditional security models are no longer sufficient. These evolving threats often exploit gaps in traditional security. Ransomware-as-a-Service (RaaS): The Kaseya ransomware attack in 2021 compromised more than 1,000 businesses.

Social Engineering

Social Engineering Authentication Architecture Ransomware

When Prevention Fails: How Hackers and AI Are Forcing a Cybersecurity Rethink

Jane Frankland

MAY 18, 2025

On one side, defenders are using AI to predict, prevent, and respond to cyber threats with precision. This has given rise to Cybercrime-as-a-Service (CaaS) and Hacking-as-a-Service (HaaS)turnkey offerings that provide everything from ransomware kits to AI-generated malware and phishing campaigns.

Cybersecurity

Cybersecurity Backups Ransomware Firewall

Silent Ransom Group targeting law firms, the FBI warns

Security Affairs

MAY 24, 2025

Linked to BazarCall campaigns, the group previously enabled Ryuk and Conti ransomware attacks. The FBI warns that the Silent Ransom Group, active since 2022 and also known as Luna Moth, has targeted U.S. law firms using phishing and social engineering. ” reads the alert issued by the FBI.

Social Engineering

Social Engineering Antivirus Phishing Authentication

From Pest Control to Cybersecurity: What CISOs Can Learn from Pestie

SecureWorld News

JANUARY 21, 2025

Keeping pests out of your home and keeping cyber threats out of your organization might seem worlds apart, but there are surprising parallels between the two. Step 6: Adapting to new threats Pestie parallel: Pests evolve; new species might emerge, and old ones may adapt to traditional treatments.

CISO

CISO Cybersecurity Cyber threats Education

Amazon's Latest Data Breach a Ripple Effect of MOVEit

SecureWorld News

NOVEMBER 13, 2024

MOVEit, a file transfer software developed by Progress Software, was exploited by the Cl0p ransomware group, which used a Zero-Day vulnerability to steal sensitive data from organizations using the software. This should be coupled with framework-driven operations and SecOps at the helm, powered by cyber threat intelligence (CTI)." "The

Data breaches

Data breaches Identity Theft Education Software

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency

Cryptocurrency Hacking Malware Data breaches

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

SecureWorld News

FEBRUARY 5, 2025

Key findings: the cyber threat landscape in 2025 1. Ransomware and state-sponsored attacks continue to escalate Canada's critical sectorsincluding healthcare, energy, education, and retailhave become prime targets for cybercriminals. Ransomware is no longer an "if" but a "when," making proactive defense strategies essential.

InfoSec

InfoSec Cybersecurity Energy and Utilities Education

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

SecureWorld News

JUNE 9, 2025

Most aviation processes are heavily digitized, and in the wake of new cyber threats, airlines and the broader sector must prioritize cybersecurity more than ever before. Ransomware is especially prevalent, with 55% of civil aviation cyber decision-makers admitting to being victims in the past 12 months.

Cybersecurity

Cybersecurity Social Engineering Computers and Electronics Risk

UK Cybersecurity Weekly News Roundup – 31 March 2025

Security Boulevard

MARCH 30, 2025

UK Warned of Inadequate Readiness Against State-Backed Cyberattacks Cybersecurity experts have sounded the alarm over the UK's growing vulnerability to state-sponsored cyber threats. A recent report by the National Cyber Security Centre (NCSC) shows a 16% increase in severe cyber incidents affecting national infrastructure in 2024.

Cybersecurity

Cybersecurity Digital transformation Ransomware Healthcare

Shifting from Business Continuity to Continuous Business in Cyber

Jane Frankland

OCTOBER 25, 2024

At a time where cyber threats are growing in scale and sophistication, continuous readiness is a non-negotiable for ITDMs, CISOs and cyber risk owners. It involves a proactive strategy to recover from cyber incidents such as data breaches or ransomware attacks.

Cyber Risk

Cyber Risk CISO Cyber threats Risk

Honeywell Report OT Under Siege

SecureWorld News

JUNE 6, 2025

The Honeywell 2025 Cyber Threat Report delivers a sobering snapshot of today's industrial cybersecurity landscape: cyberattacks targeting operational technology (OT) environments are no longer rare or speculative—they're persistent, highly targeted, and increasingly sophisticated. OT defenders must plan for: Hybrid threats (e.g.,

Media

Media Social Engineering Malware Engineering

Shared Intel Q&A: Can risk-informed patching finally align OT security with real-world threats?

Security Boulevard

JUNE 9, 2025

Cyber threats to the U.S. Attackers—from nation-state actors to ransomware gangs—are growing more creative and persistent in probing utility networks and operational technology systems that underpin modern life. electric grid are mounting.

Risk

Risk Cyber threats Technology Ransomware

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

The growing sophistication of cyber threats demands robust identity assurance solutions that include multifactor authentication, risk monitoring and adaptive verification collectively forming multi-factor verification (MFV.) Enterprises are using AI-enabled automations to satisfy the Tier 1 cyber activities.

Risk

Risk Threat Detection Technology Phishing

Krispy Kreme Cyber Attack a Wake-Up Call for the Food Industry

SecureWorld News

MARCH 17, 2025

Although there remains some ambiguity over whether ransomware was employed, the Play ransomware gang later claimed responsibility , alleging that sensitive data, such as payroll records, contracts, tax documents, and customer financial information, was exfiltrated. All of these actions show your customers that you can be trusted.

Cyber Attacks

Cyber Attacks Digital transformation Threat Detection Penetration Testing

From Sensors to Servers: End-to-End Security for IoT in Critical Utility Networks

SecureWorld News

NOVEMBER 7, 2024

In the same way, utilities around the world have experienced service disruptions as ransomware targets back-end systems. The scale of the Florida water treatment plant and similar incidents shows that threats can come from surprising places, like forgotten passwords, unpatched vulnerabilities, or weak vendor policies.

IoT

IoT Firmware Encryption Authentication

Canada Releases 2025 National Cyber Security Strategy

SecureWorld News

FEBRUARY 12, 2025

The Honourable David McGuinty, Minister of Public Safety, on February 6th unveiled Canada's National Cyber Security Strategy (NCSS), a long-term plan to protect Canadians, businesses, and critical infrastructure from an increasingly complex cyber threat landscape. The immediate knee jerk reaction to this is, FINALLY!"

Cyber threats

Cyber threats Cybercrime Cybersecurity Government

Cybercrime Soars: FBI's 2024 Report Reveals $16.6 Billion in Losses

SecureWorld News

MAY 14, 2025

Critical infrastructure under siege: The healthcare and public health sector was the most targeted by ransomware attackers in 2023. Other critical sectors, including manufacturing and government facilities, also faced significant threats. Ransomware The IC3 recognized 67 new ransomware variants in 2024.

Cybercrime

Cybercrime Scams Cryptocurrency Internet

Microsoft Patch Tuesday, April 2022 Edition

Krebs on Security

APRIL 13, 2022

Other potentially wormable threats this month include CVE-2022-24491 and CVE-2022-24497 , Windows Network File System (NFS) vulnerabilities that also clock in at 9.8 CVSS scores and are listed as “exploitation more likely by Microsoft.”

DNS

DNS Internet Internet Firewall

News alert: SpyCloud operationalizes darknet data, pioneers shift to holistic identity threat protection

The Last Watchdog

FEBRUARY 4, 2025

This allows security teams to neutralize threats in less than 15 minutes of discovery, reducing risk without straining resources or operational bandwidth. SpyClouds data from breaches, malware-infected devices, and successful phishes also powers many popular dark web monitoring and identity theft protection offerings.

Cybercrime

Cybercrime Phishing Accountability Malware

News Alert: INE Security outlines top 5 training priorities emerging from RSAC 2025

The Last Watchdog

MAY 13, 2025

As an exhibitor that engaged with both frontline practitioners and top-level decision makers, INE Security gained firsthand insights into organizations’ most pressing security challenges: the convergence of AI-driven threats, multi-cloud vulnerabilities, and increasingly sophisticated attack vectors.

Architecture

Architecture Risk Cybersecurity Cyber Attacks

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Akira ransomware gang used an unsecured webcam to bypass EDR

Trending Sources

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

Russia Charges Notorious Ransomware Developer in Rare Cybercrime Case

Report Shows Ransomware Has Grown 41% for Construction Industry

July 2024 ransomware attack on the City of Columbus impacted 500,000 people

Threat Landscape Report: Uncovering Critical Cyber Threats to Hospitality and Recreation

SMBs Know They’re At Risk, but Most Aren’t Embracing AI

Operation Serengeti: INTERPOL arrested 1,006 suspects in 19 African countries

News alert: INE Security shares cyber hygiene guidance for small- and medium-sized businesses

Ransomware Scum — Out For Blood: NYBCe is Latest Victim

Leaked Black Basta Chats Expose Ransomware Secrets & Infighting

The Rise of Non-Ransomware Attacks on AWS S3 Data

American Water Shuts Down Services After Cybersecurity Breach

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

UK’s Cyber Crime Down in 2024: Better ‘Cyber Hygiene Among Small Businesses

World Backup Day: A Clarion Call for Cyber Resilience

AI Cybersecurity Firm Raises $100 Million to Strengthen National Security

Digital life protection: How Webroot keeps you safe in a constantly changing world

2025 Top Cyber Threats to Financial Services and How To Mitigate Them

City of Columbus breach affects around half a million citizens

Russia-linked group Nebulous Mantis targets NATO-related defense organizations

Unanswered Questions Loom Over Cyber Attacks on M&S, Co-op & Harrods

Operation Heart Blocker: International Police Disrupt Phishing Network

Zero Trust: Your Best Friend in the Age of Advanced Threats

When Prevention Fails: How Hackers and AI Are Forcing a Cybersecurity Rethink

Silent Ransom Group targeting law firms, the FBI warns

From Pest Control to Cybersecurity: What CISOs Can Learn from Pestie

Amazon's Latest Data Breach a Ripple Effect of MOVEit

Security Affairs newsletter Round 498 by Pierluigi Paganini – INTERNATIONAL EDITION

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

Cybersecurity in Aviation: Rising Threats and Modernization Efforts

UK Cybersecurity Weekly News Roundup – 31 March 2025

Shifting from Business Continuity to Continuous Business in Cyber

Honeywell Report OT Under Siege

Shared Intel Q&A: Can risk-informed patching finally align OT security with real-world threats?

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

Krispy Kreme Cyber Attack a Wake-Up Call for the Food Industry

From Sensors to Servers: End-to-End Security for IoT in Critical Utility Networks

Canada Releases 2025 National Cyber Security Strategy

Cybercrime Soars: FBI's 2024 Report Reveals $16.6 Billion in Losses

Microsoft Patch Tuesday, April 2022 Edition

News alert: SpyCloud operationalizes darknet data, pioneers shift to holistic identity threat protection

News Alert: INE Security outlines top 5 training priorities emerging from RSAC 2025

Stay Connected