The Last Watchdog

FEBRUARY 4, 2025

This innovative approach empowers security teams to proactively protect against previously unseen risks, including the darknet exposures of identity and authentication data stolen about employees, consumers, and suppliers that have been beyond their visibility to date.

Cybercrime

The Last Watchdog

AUGUST 6, 2025

Within seconds, it pulls together identity exposure data across third-party breaches, malware infections, and successful phishes, as well as patterns of behavior on infostealer-infected devices to generate actionable finished intelligence that points to potential insider threats – malicious, negligent, and compromised.

Threat Detection

Jane Frankland

APRIL 10, 2025

Just like the three wise monkeys , some small business owners are unintentionally following a philosophy of see no risk, hear no warning, speak no threat when it comes to cybersecurity. Why Small Business Cybersecurity Matters More Than Ever In a supply chain world, your weakest link is someone elses risk exposure. Here’s how: 1.

Small Business

Security Affairs

FEBRUARY 3, 2025

Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency. Crazy Evil has earned over $5 million through phishing scams since 2021. Expertise in deploying cryptocurrency wallet drainers and setting up phishing landing pages is also highly valued.

Scams

Malwarebytes

JANUARY 15, 2025

Table of contents Overview Criminals impersonate Google Ads Lures hosted on Google Sites Phishing for Google account credentials Victimology Who is behind these campaigns? Figure 12: The actual phishing page that follows Finally, all the data is combined with the username and password and sent to the remote server via a POST request.

Advertising

SecureWorld News

APRIL 22, 2025

A sophisticated cybercrime campaign, dubbed Elusive Comet , has been uncovered, in which North Korean threat actors are exploiting Zoom's remote control feature to infiltrate the systems of cryptocurrency professionals. Victims are sent unsolicited invitations to join Zoom calls, often via links in phishing emails or messages.

Cryptocurrency

SecureWorld News

DECEMBER 17, 2024

Researchers at Datadog Security Labs have uncovered a year-long, large-scale cybercrime campaign by a threat actor tracked as MUT-1244. Simultaneously, a phishing campaign tricked targets into installing a fake kernel update. These trojanized repos looked legitimate, often appearing in trusted threat intelligence feeds.

Phishing

Security Affairs

NOVEMBER 3, 2024

Chinese threat actors use Quad7 botnet in password-spray attacks FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide PTZOptics cameras zero-days actively exploited in the wild New LightSpy spyware (..)

Cryptocurrency

Security Affairs

APRIL 2, 2025

FIN7 cybercrime group has been linked to Anubis, a Python-based backdoor that provides remote access to compromised Windows systems. Delivered via phishing and hosted on compromised SharePoint sites, it remains undetected by most antivirus solutions, posing a serious security risk.

Antivirus

SecureWorld News

MARCH 20, 2025

March Madness is here, and while fans are busy filling out brackets and making last-minute bets, cybercriminals are running their own full-court presstargeting unsuspecting fans with phishing scams, fake betting apps, and credential-harvesting schemes. This scenario follows the common phishing tactics: strike at personal interest.

Scams

SecureWorld News

FEBRUARY 14, 2025

Last year saw a 110% rise in cybercrime in the lead up to Valentine's Day. Avoid phishing emails and messages You may receive emails or texts with fake Valentine's Day deals, electronic greeting cards (e-cards), or delivery notifications. Scammers set up fake websites selling flowers, chocolates, and jewelry at suspiciously low prices.

Scams

SecureWorld News

JULY 8, 2025

Ransomware-as-a-Service (RaaS) has transformed cybercrime into an accessible, scalable platform that anyone can tap into—no code required. Welcome to the age of cybercrime for hire—streamlined, professionalized, and more dangerous than ever. How RaaS works: cybercrime-as-a-platform RaaS operates like any modern SaaS business model.

Ransomware

eSecurity Planet

JULY 14, 2025

Airlines become top targets Airlines are now a prime focus for cybercrime groups. She stressed that even if a breach didn’t directly impact you, your information could still be used in phishing scams or identity theft. Within just one week, Hawaiian Airlines and Australian carrier Qantas were both hit with attacks.

Insurance

Security Affairs

DECEMBER 10, 2024

This social engineering scheme has been amplified by targeted phishing, smishing, and vishing activities, with a noticeable increase around the winter holidays. Dubai Police have warned against calls from scammers asking for financial details, reminding residents that official institutions will never request this information over the phone.

Phishing

Security Affairs

DECEMBER 9, 2024

” Electrica Group advised customers to stay vigilant against potential phishing attempts and suspicious communications claiming to be from Electrica. Threat actors gained access to credentials for election-related websites, and then leaked them on Russian cybercrime forums a few days before the presidential election.

Ransomware

Security Affairs

AUGUST 5, 2025

“On July 24, 2025 (GMT+9), Cisco was made aware of an incident involving a bad actor targeting a Cisco representative through a voice phishing attack, also known as vishing.” ” reads the statement published by Cisco. ” concludes the statement.

Data breaches

SecureWorld News

FEBRUARY 13, 2025

Traditional phishing attacks rely on deceptive emails, but deepfakes have taken impersonation to a new level by creating convincing audio and video forgeries. Key risks posed by deepfakes Deepfake attacks can be broadly classified into three categories.

Social Engineering

Malwarebytes

MAY 1, 2025

Phishing In phishing scams, cybercriminals trick people and businesses into handing over sensitive information like credit card numbers or login details for vital online accounts. In phishing attacks, there never is a genuine problem with a users account, and there never is a real request for information from the company.

Small Business

SecureWorld News

JULY 17, 2025

This trend reflects increasing awareness of OT cyber risk and the need for executive-level accountability," Fortinet notes. Alarmingly, AI-powered cybercrime is accelerating, with adversaries using it to scale phishing and evade detection.

CISO

Hacker's King

DECEMBER 24, 2024

AI-powered malware and phishing schemes can adapt to defenses in real time, making them harder to detect and counter. Quantum Computing Threats While quantum computing offers immense potential, it also poses a serious risk to traditional encryption methods. Organizations must invest in advanced AI-based security tools to stay ahead.

Cybersecurity

Security Affairs

APRIL 30, 2025

Since mid-2022, theyve deployed RomCom via spear-phishing for espionage, lateral movement, and data theft. “The Nebulous Mantis team, which changes the domains they use every month, obtains these spear-phishing and C2 servers from LuxHost and AEZA bulletproof hosting (BPH) services.”

Encryption

SecureWorld News

FEBRUARY 12, 2025

With cybercrime, state-sponsored attacks, and digital risks evolving rapidly, the strategy aims to modernize Canada's cyber defenses through enhanced collaboration, industry leadership, and proactive threat mitigation. Promote AI security guidelines to mitigate risks posed by generative AI and deepfake-driven cyber threats.

Cyber threats

Security Affairs

JULY 9, 2025

According to Shellter’s team, this decision risked public safety and undermined both Elastic’s own detection products and broader community trust. Starting in May, threat actors used Shellter-protected malware in phishing campaigns targeting YouTubers with fake sponsorship offers from brands like Udemy and Duolingo.

Malware

The Last Watchdog

APRIL 7, 2025

SpyCloud helps stop cybercrime before it happens by identifying these identity risks early, mapping them back to impacted users, devices, and applications, and sending actionable intelligence to an organizations EDR for response and remediation. About SpyCloud: SpyCloud transforms recaptured darknet data to disrupt cybercrime.

Antivirus

Malwarebytes

FEBRUARY 4, 2025

Generative AI tools can more convincingly write phishing emails so that the tell-tale signs of a scamlike misspellings and clumsy grammarare all but gone. Cybercrime is a very mature field that relies on a set of well-established tools, such as phishing, information stealers, and ransomware that are already feature complete.

Artificial Intelligence

Security Affairs

JUNE 19, 2025

With over 16 billion login records exposed, cybercriminals now have unprecedented access to personal credentials that can be used for account takeover, identity theft, and highly targeted phishing. The datasets, briefly exposed via unsecured servers, now pose major risks, fueling phishing, ransomware, and account takeovers.

Data breaches

SecureWorld News

APRIL 10, 2025

I've seen studies that show that 60 percent of all cybercrimes are attributable to insiders, and it's all too common that terminated employees exfiltrate troves of sensitive data. John DiLullo, CEO at Deepwatch, had this to say, "The blast radius from these cuts at CISA will be massive.

Energy and Utilities

SecureWorld News

FEBRUARY 26, 2025

Crypto companies must now adopt advanced cybersecurity measures to ward off sophisticated threats such as malware and phishing attacks, and there's likely to be an increased focus on developing comprehensive insurance and risk management strategies to mitigate potential financial losses."

Hacking

Webroot

FEBRUARY 21, 2025

Phishing scams, ransomware attacks, data breaches, and identity theft are part of a growing list of online dangers that are a daily reality. Anti-phishing protection Shields you from phishing attempts. While this connectivity brings convenience, it also comes with risks.

Antivirus

Security Affairs

MAY 4, 2025

CISA adds SonicWall SMA100 and Apache HTTP Server flaws to its Known Exploited Vulnerabilities catalog Pro-Russia hacktivist group NoName057(16) is targeting Dutch organizations FBI shared a list of phishing domains associated with the LabHost PhaaS platform Canadian electric utility Nova Scotia Power and parent company Emera suffered a cyberattack (..)

Cybercrime

Malwarebytes

MAY 8, 2025

We discovered a new phishing kit targeting payroll and payment platforms that aims to not only steal victims’ credentials but also to commit wire fraud. Clicking on the ad sent employees and employers to a phishing website impersonating Deel. Phishing portal and 2FA The first phishing domain we saw was login-deel[.]app

Phishing

SecureWorld News

MARCH 18, 2025

Some reports indicate that Chinese smishing groups are selling SMS phishing kits, enabling scammers to efficiently spoof toll operators and target users in multiple states, including Massachusetts, Florida, and Texas. 84% of IT leaders globally recognize that phishing and smishing have become harder to detect due to AI-powered tools.

Scams

Webroot

MARCH 3, 2025

March is a time for leprechauns and four-leaf clovers, and as luck would have it, its also a time to learn how to protect your private data from cybercrime. The growing risks to your data During the third quarter of 2024, data breaches exposed more than 422 million records worldwide.

Consumer Protection

SecureWorld News

APRIL 14, 2025

The evolution of cybercrime is shifting into hyperdrive. It helps prioritize risks, organize protection efforts, and allocate resources more flexibly to address the most pressing threats first. Yet, it's potent enough to give white hats the upper hand in this race.

Media

IT Security Guru

JULY 22, 2025

The devastating cyber attack that shuttered the company has returned to the spotlight this week with a BBC Panorama documentary examining the real-world consequences of ransomware and the rapidly evolving scale of cybercrime in the UK. Always verify, authenticate and authorise based on context and risk. Payroll couldn’t be run.

Passwords

Malwarebytes

DECEMBER 18, 2024

Fake-faced executives The first example is a phishing campaign targeting Securitas OneID. The threat actors are very cautious about avoiding detection by running ads that most of the time redirect to a completely bogus page unrelated to what one would expect, namely a phishing portal. It doesn’t seem like it… yet.

Engineering

Malwarebytes

MARCH 20, 2025

Google Ads crew pivots Back in January, we documented a large phishing campaign targeting Google accounts via Google Ads using a very specific technique that abused Google Sites. works We don’t just report on threats – we help safeguard your entire digital identity Cybersecurity risks should never spread beyond a headline.

Scams