IT Security Guru

MARCH 26, 2025

This transformation comes with immense responsibility from our business, IT and especially cybersecurity professionals to keep data safe and their colleagues, friends and family members protected from fraud and intrusion of privacy. With AI evolving rapidly, what new cybersecurity challenges will IT professionals need to tackle?

Cybersecurity 113

Cybersecurity Encryption Threat Detection Authentication 113

Centraleyes

DECEMBER 16, 2024

As we approach 2025, the cybersecurity landscape is evolving rapidly, shaped by technological advancements, regulatory shifts, and emerging threats. Below is an exhaustive list of key cybersecurity trends to watch out for in 2025. Lets explore the top current cybersecurity trends this year. The challenge?

Cybersecurity 98

Cybersecurity Insurance Cyber Insurance Technology 98

The Last Watchdog

DECEMBER 18, 2024

Part three of a four-part series In 2024, global pressure on companies to implement advanced data protection measures intensified, with new standards in encryption and software transparency raising the bar. Key measures like the EU Cybersecurity Act, US software transparency rules, and AI-focused laws (e.g.,

Cybersecurity 130

Cybersecurity CISO Risk Government 130

SecureWorld News

OCTOBER 23, 2024

Securities and Exchange Commission (SEC) announced Tuesday that it has fined four companies $7 million for misleading statements about their cybersecurity incidents, particularly concerning the high-profile 2019 SolarWinds hack. The SEC charged the companies with "materially misleading disclosures regarding cybersecurity risks and intrusions."

Cybersecurity 113

Cybersecurity Risk Hacking Software 113

Jane Frankland

MAY 18, 2025

Cybersecurity has entered a new era. In this blog, Ill be examining how AI is reshaping the fight on both sides, shedding light on the unprecedented collaboration among hackers, and why the old cybersecurity playbook is no match for todays challenges. The harsh truth is that no prevention strategy can ever be 100% effective.

Cybersecurity 130

Cybersecurity Ransomware Backups Firewall 130

Security Affairs

NOVEMBER 26, 2024

Banshee Stealer, a MacOS Malware-as-a-Service, shut down after its source code leaked online. In August 2024, Russian hackers promoted BANSHEE Stealer, a macOS malware targeting x86_64 and ARM64, capable of stealing browser data, crypto wallets, and more. The code is now available on GitHub. concludes the report.

Malware 144

Malware Cryptocurrency Encryption Passwords 144

Malwarebytes

MAY 1, 2025

Without robust IT budgets or fully staffed cybersecurity departments, small businesses often rely on their own small stable of workers (including sole proprietors with effectively zero employees) to stay safe online. That means that what worries these businesses most in cybersecurity is what is most likely to work against them.

Small Business 107

Small Business Cybersecurity Scams Passwords 107

SecureWorld News

MAY 9, 2025

Google's Threat Intelligence Group (GTIG) has identified a new malware strain, dubbed "LOSTKEYS," attributed to the Russian state-sponsored hacking group COLDRIVER. The introduction of LOSTKEYS signifies a strategic shift towards deploying malware for direct data exfiltration.

Malware 87

Malware Social Engineering Engineering Government 87

Jane Frankland

APRIL 10, 2025

Just like the three wise monkeys , some small business owners are unintentionally following a philosophy of see no risk, hear no warning, speak no threat when it comes to cybersecurity. In the context of cybersecurity, its a silent enabler for hackers who thrive on unguarded systems and untrained staff.

Small Business 130

Small Business Risk Cybersecurity Cyber Risk 130

Security Affairs

JUNE 9, 2025

Researchers from Russian cybersecurity firm Kaspersky discovered a new variant of the Mirai botnet that exploits a command injection vulnerability ( CVE-2024-3721 ) in TBK DVR-4104 and DVR-4216 digital video recording devices. The malware also verifies its execution path against a list of allowed directories to avoid detection.

IoT 138

IoT Firmware Malware Architecture 138

Security Affairs

JANUARY 10, 2025

In August 2024, Russian crooks advertised a macOS malware called BANSHEE Stealer that can target both x86_64 and ARM64 architectures. The malware authors claimed it can steal a broad range of data from compromised systems, including browser data, cryptocurrency wallets, and around 100 browser extensions.

Malware 122

Malware Advertising Antivirus Cybercrime 122

Security Affairs

MARCH 8, 2025

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. Cybersecurity researchers at S-RM team discovered a novel attack technique used by the Akira ransomware gang. Akira successfully encrypted files across the network.

Ransomware 131

Ransomware IoT Encryption Passwords 131

Penetration Testing

JUNE 15, 2025

Anubis, a new RaaS, combines ECIES encryption with a "wipe mode" that permanently destroys files. It's actively targeting healthcare, construction, and engineering sectors.

Encryption 65

Encryption Healthcare Ransomware Engineering 65

Tech Republic Security

MAY 30, 2024

The ShrinkLocker ransomware exploits the BitLocker feature on enterprise PCs to encrypt the entire local drive and remove recovery options.

Encryption 209

Encryption Ransomware Software Malware 209

Tech Republic Security

APRIL 17, 2023

New cloud-focused credential harvester available on encrypted messaging service Telegram is part of a trend of Python scrapers making it easier to bait multiple phishing hooks. The post Credential harvesting malware appears on deep web appeared first on TechRepublic.

Malware 187

Malware Phishing Encryption Mobile 187

Security Affairs

JUNE 6, 2025

A joint advisory from the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) states that Play ransomware has hit approximately 900 organizations over the past three years. ” reads the advisory.

Ransomware 97

Ransomware Encryption Antivirus Malware 97

Krebs on Security

JUNE 7, 2021

In the process of doing so, I encountered a small snag: The FSB’s website said in order to communicate with them securely, I needed to download and install an encryption and virtual private networking (VPN) appliance that is flagged by at least 20 antivirus products as malware. The FSB headquarters at Lubyanka Square, Moscow.

Antivirus 331

Antivirus VPN Encryption Malware 331

Security Affairs

APRIL 2, 2025

The threat actor FIN7 , also known as Savage Ladybug, has developed a new Python-based malware, named Anubis Backdoor, which allows attackers to gain full remote control over infected Windows systems. “The malware is distributed as a ZIP package, which includes a single Python script alongside multiple Python executables.

Antivirus 129

Antivirus Cybercrime Malware Encryption 129

The Last Watchdog

APRIL 21, 2021

From January through March 2021, TLS concealed 45 percent of the malware Sophos analysts observed circulating on the Internet; that’s double the rate – 23 percent – seen in early 2020, Dan Schiappa, Sophos’ chief product officer, told me in a briefing. “For And then they may use off-the-shelf malware to carry out their attack.

Malware 214

Malware Firewall Encryption Data breaches 214

eSecurity Planet

MAY 5, 2025

A notorious hacker group known as Golden Chickens is back in the spotlight after cybersecurity researchers discovered two new digital weapons designed to steal passwords, watch every word you type, and target your cryptocurrency. But unlike most modern malware, TerraLogger doesnt send the stolen data anywhere at least not yet.

Passwords 68

Passwords Malware Cryptocurrency Cybercrime 68

Anton on Security

JULY 7, 2022

for “ransomware” in the cloud] observed was where attackers were seen brute forcing SQL databases, cloning a database table into a new table , encrypting the data, and proceeding to drop the original table. ” [A.C.?—?cloud not malware?—?do Related posts: Google Cybersecurity Action Team Threat Horizons Report #2 Is Out!

Cybersecurity 246

Cybersecurity Cryptocurrency Ransomware Education 246

Security Affairs

OCTOBER 20, 2024

CISA adds Microsoft Windows Kernel, Mozilla Firefox and SolarWinds Web Help Desk bugs to its Known Exploited Vulnerabilities catalog GitHub addressed a critical vulnerability in Enterprise Server A new Linux variant of FASTCash malware targets financial systems WordPress Jetpack plugin critical flaw impacts 27 million sites Pokemon dev Game Freak discloses (..)

Data breaches 119

Data breaches Cybercrime Cyber Insurance Marketing 119

Hacker's King

DECEMBER 24, 2024

As the digital landscape evolves, cybersecurity remains a critical concern for businesses, governments, and individuals alike. With the advent of new technologies and rising cyber threats , 2025 promises significant shifts in the cybersecurity domain. YOU MAY ALSO WANT TO READ ABOUT: Can Cybersecurity Make You a Millionaire?

Cybersecurity 59

Cybersecurity Cyber Insurance IoT Insurance 59

Krebs on Security

NOVEMBER 17, 2022

He’d been on the job less than six months, and because of the way his predecessor architected things, the company’s data backups also were encrypted by Zeppelin. “We’ve found someone who can crack the encryption.” Then came the unlikely call from an FBI agent. “Don’t pay,” the agent said.

Ransomware 359

Ransomware Encryption Backups Manufacturing 359

Security Affairs

DECEMBER 3, 2024

The threat actors had access to the company’s information technology systems and encrypted some of its data files. The investigation into the security breach is still ongoing and the company is remediating the incident with the help of external cybersecurity specialists. ” reads the report filed with SEC.

Ransomware 121

Ransomware Encryption Technology Cybersecurity 121

Schneier on Security

APRIL 2, 2024

The cybersecurity world got really lucky last week. Anyone in possession of a predetermined encryption key could stash any code of their choice in an SSH login certificate, upload it, and execute it on the backdoored device. From ArsTehnica : Malicious code added to xz Utils versions 5.6.0 modified the way the software functions.

Social Engineering 354

Social Engineering Engineering Software Encryption 354

eSecurity Planet

APRIL 21, 2025

A notorious Russian hosting service provider known as Proton66 is at the center of a series of widespread cyberattacks and malware campaigns targeting organizations and users worldwide, according to fresh findings from cybersecurity experts. The malware connects to a C2 server at 193.143.1.139. “Net blocks 45.135.232.0/24

Malware 71

Malware Phishing Ransomware VPN 71

Hacker's King

OCTOBER 20, 2024

Cybersecurity is essential for protecting digital assets and ensuring privacy online, but many people ask, can cybersecurity track you? While cybersecurity primarily aims to protect users from threats like malware, hacking, and data breaches, some tools can monitor or track user activities in certain situations.

Cybersecurity 52

Cybersecurity Cyber threats Antivirus Firewall 52

Security Boulevard

AUGUST 1, 2024

Google is adding greater encryption capabilities to Chrome to better protect users from information-stealing malware, a move that comes after the company's controversial decision to once again delay getting rid of third-party cookies. The post Google Using Enhanced Encryption to Protect Cookies appeared first on Security Boulevard.

Encryption 116

Encryption Malware Mobile Cybersecurity 116

Malwarebytes

MAY 8, 2025

According to the original complaint against NSO Group, filed in October 2019, the spyware vendor used WhatsApp servers to send malware to around 1400 mobile phones. NSO Group reverse engineered WhatsApp’s software and developed its own software and servers to send messages to victims via the WhatsApp service that contained malware.

Spyware 135

Spyware Hacking Surveillance Government 135

SecureWorld News

MAY 19, 2025

The evolution of cybersecurity in space During the Cold War, surveillance satellites were prominent on both sides, but the lack of internet and networking meant that most of the interference revolved around jamming and intercepting radio signals. Even high above the clouds, the space segment itself is not immune.

Cybersecurity 98

Cybersecurity Architecture Cyber Risk Risk 98

The Hacker News

JANUARY 9, 2025

Cybersecurity researchers have uncovered a new, stealthier version of a macOS-focused information-stealing malware called Banshee Stealer.

Encryption 122

Encryption Antivirus Malware Cybersecurity 122

Joseph Steinberg

MARCH 15, 2021

During the discussion, a colleague in the field mentioned that ideally people should lock their Wi-Fi networks not only with proper encryption, but also with a MAC address filter that allows only specific authorized devices to connect to the network. Keep in mind that: 1. MAC address filtering is a pain to manage.

Wireless 360

Wireless Artificial Intelligence Encryption Passwords 360

The Last Watchdog

DECEMBER 18, 2024

Part four of our four-part series From cybersecurity skills shortages to the pressures of hybrid work, the challenges facing organizations are at an all-time high. Quantum computing advances are making traditional encryption obsolete, and adversaries are stockpiling data for future decryption.

Risk 173

Risk Threat Detection Technology Phishing 173

Penetration Testing

MAY 4, 2025

In a comprehensive technical report, ThreatLabz has dissected the inner workings of StealC V2, a major upgrade to The post StealC V2: ThreatLabz Unveils the Evolution of a Stealthy Info-Stealer and Malware Loader appeared first on Daily CyberSecurity.

Malware 76

Malware Cybersecurity Encryption 76

Anton on Security

APRIL 13, 2023

admittedly this is more interesting than ssh with no password, and a bit harder for a legacy security teams to comprehend, it seems] “Threat actors often use ransomware in the cloud to extort companies in a different manner than traditional on-premises environments, threatening to release or delete data rather than simply encrypt it.” [A.C.

Cybersecurity 221

Cybersecurity Passwords Accountability Ransomware 221

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide. All they need is one successful attempt to gain initial access."

Ransomware 113

Ransomware IoT Encryption Social Engineering 113