Cybersecurity, Government and Social Engineering

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based based technology companies.

Hacking

Hacking Accountability Government Social Engineering

Why Take9 Won’t Improve Cybersecurity

Schneier on Security

MAY 30, 2025

There’s a new cybersecurity awareness campaign: Take9. But the campaign won’t do much to improve cybersecurity. ” was an awareness campaign from 2016, by the Department of Homeland Security—this was before CISA—and the National Cybersecurity Alliance. First, the advice is not realistic.

Cybersecurity

Cybersecurity Scams Security Awareness Phishing

Cybersecurity Event Cancelled After Being Hit By Cybercriminals

Joseph Steinberg

OCTOBER 24, 2022

An online cybersecurity event with 2,500 people already logged in had to be cancelled after suspected cybercriminals launched a social engineering attack in the event’s chat window. Shortly after such messages appeared, the AICD, in order to protect attendees, cancelled the event, and contacted local law enforcement.

Cybersecurity

Cybersecurity Social Engineering Artificial Intelligence Insurance

Google's AI Trends Report: Key Insights and Cybersecurity Implications

SecureWorld News

FEBRUARY 25, 2025

Artificial intelligence (AI) is transforming industries at an unprecedented pace, and its impact on cybersecurity is no exception. From automating cybersecurity defenses to combatting adversarial AI threats, the report underscores both the power and pitfalls of AI-driven security.

Cybersecurity

Cybersecurity Social Engineering Artificial Intelligence Cyber threats

The Battle for Attention: How Cybersecurity Fights for Truth in a World of Noise

Jane Frankland

JUNE 27, 2025

Whether it’s politics, media, or cybersecurity, the ability to seize attention now often outweighs the value of truth. And in a world drowning in distractions, the cybersecurity industry finds itself in an uphill battle—not just against attackers but against public indifference and misinformation. Cyberwar as theater.

Cybersecurity

Cybersecurity Risk Phishing Education

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

SecureWorld News

FEBRUARY 5, 2025

The State of Cybersecurity in Canada 2025 report, published by the Canadian Cybersecurity Network (CCN) and the Security Architecture Podcast , delivers an in-depth analysis of the evolving threat landscape, emerging risks, and strategic recommendations for Canadian organizations.

InfoSec

InfoSec Cybersecurity Energy and Utilities Cyber Insurance

EDR-as-a-Service makes the headlines in the cybercrime landscape

Security Affairs

APRIL 7, 2025

Cybercriminals exploit compromised accounts for EDR-as-a-Service (Emergency Data Requests – EDR), targeting major platforms According to a detailed analysis conducted by Meridian Group, an increasingly complex and structured phenomenon, commonly referred to as EDR-as-a-Service, is taking hold in the cybersecurity landscape.

Cybercrime

Cybercrime Social Engineering Accountability Government

Russia's COLDRIVER Targets Western Entities with 'LOSTKEYS' Malware

SecureWorld News

MAY 9, 2025

Historically, COLDRIVERalso known as Star Blizzard, UNC4057, and Callistohas targeted high-profile individuals and organizations, including NATO governments, NGOs, journalists, and former intelligence officers, primarily through credential phishing campaigns. The infection process begins with a lure website featuring a fake CAPTCHA.

Malware

Malware Social Engineering Government Engineering

Microsoft Expands Security Copilot with AI Agents

SecureWorld News

MARCH 24, 2025

Microsoft announced a major expansion of its Security Copilot platform today, introducing a suite of AI agents designed to automate common security operations tasks and reduce the burden on cybersecurity professionals. The solution is better governance and security for all identitieshuman and non-human alike."

Social Engineering

Social Engineering Government Risk Phishing

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

Part four of our four-part series From cybersecurity skills shortages to the pressures of hybrid work, the challenges facing organizations are at an all-time high. Enterprises must secure AI agents, adopt proactive data governance, and deploy AI-based security platforms. This frees teams for strategic efforts like risk management.

Risk

Risk Threat Detection Technology Phishing

Understanding the Deepfake Threat

SecureWorld News

FEBRUARY 13, 2025

Evolution of social engineering Social engineering exploits human psychology to manipulate individuals into revealing sensitive information or taking harmful actions. Attackers now impersonate executives, government officials, and even family members to gain trust and manipulate victims.

Social Engineering

Social Engineering Authentication Identity Theft Engineering

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

SecureWorld News

APRIL 22, 2025

This incident highlights the critical vulnerability in cryptocurrency communities, where high-net-worth individuals or executives may be more prone to social engineering attacks due to the high volume of media and investor engagement they handle.

Cryptocurrency

Cryptocurrency Social Engineering Cybercrime Engineering

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

Joseph Steinberg

JULY 13, 2022

Additionally, keep in mind that while Lockdown Mode may make it more difficult for attackers to exploit social engineering in order to compromise devices, until Apple more strictly controls what apps it allows in its app store , potential government spying remains a major problem.

Cybersecurity

Cybersecurity Government Artificial Intelligence Social Engineering

DCRat: Sophisticated RAT Delivered via Phishing Campaign Impersonating Government Entity

Penetration Testing

JULY 2, 2025

Fortinet exposes a DCRat campaign impersonating a Colombian government agency, using obfuscated multi-stage infection, steganography, and AMSI bypass to deliver the RAT.

Government

Government Phishing Social Engineering Engineering

Mobile Malware Uses Deepfakes, Social Engineering to Bypass Biometric Authentication

SecureWorld News

FEBRUARY 15, 2024

Uncovered by cybersecurity firm Group-IB , GoldPickaxe exists in both Android and iOS versions and was developed by a suspected Chinese hacking group called "GoldFactory." The hackers rely heavily on social engineering tactics to distribute the malware. Follow SecureWorld News for more stories related to cybersecurity.

Social Engineering

Social Engineering Mobile Authentication Engineering

What are the key Threats to Global National Security?

IT Security Guru

NOVEMBER 1, 2024

Cybersecurity Threats and Digital Warfare One of the most significant threats to national security in the modern era is cyber warfare. Cyber attacks can compromise critical infrastructure, financial systems, and sensitive government data.

Technology

Technology Cyber Attacks Government Risk

Columbus Ransomware Attack Exposes 500,000+ Residents’ Data: How to Stay Safe

eSecurity Planet

NOVEMBER 6, 2024

In a stunning blow to the city’s cybersecurity defenses, Columbus, Ohio, recently became the target of a massive cyberattack that exposed over half a million residents’ sensitive information. This data reportedly includes everything from names and addresses to Social Security numbers and bank account details.

Ransomware

Ransomware Authentication Identity Theft Penetration Testing

U.S. Indicts North Korean Hackers in Theft of $200 Million

Krebs on Security

FEBRUARY 17, 2021

The government alleges the men reside in North Korea but were frequently stationed by the DPRK in other countries, including China and Russia. Warrants obtained by the government allowed the FBI to seize roughly $1.9 Park was previously charged in 2018 in connection with the WannaCry and Sony Pictures attacks.

Cryptocurrency

Cryptocurrency Financial Services Banking Government

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide. Follow SecureWorld News for more stories related to cybersecurity.

Ransomware

Ransomware IoT Encryption Social Engineering

WHEN IS CYBERSECURITY IS WEEK

Hacker's King

OCTOBER 26, 2024

Cybersecurity Week, observed annually in the first week of October, is a vital initiative aimed at raising awareness about the ever-growing challenges in the digital landscape. YOU MAY ALSO WANT TO READ ABOUT: Are Cybersecurity Bootcamps Worth It? What is Cybersecurity Week?

Cybersecurity

Cybersecurity Cyber threats Education Passwords

Can Cybersecurity Make You a Millionaire?

Hacker's King

OCTOBER 22, 2024

The world of cybersecurity is booming, with digital threats increasing and businesses needing to protect their data. But can cybersecurity make you a millionaire ? As the demand for cybersecurity professionals continues to rise, so do the financial opportunities for those who excel in this domain.

Cybersecurity

Cybersecurity CISO Engineering Education

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

The government says Urban went by the aliases “ Sosa ” and “ King Bob ,” among others. 2022 that an intrusion had exposed a “limited number” of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials. Twilio disclosed in Aug.

Social Engineering

Social Engineering Cybercrime Mobile Identity Theft

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

eSecurity Planet

MAY 1, 2025

The RSA Conference 2025, held in San Francisco from April 28 to May 1, spotlighted the evolving landscape of cybersecurity, with a strong emphasis on artificial intelligence, identity security, and collaborative defense strategies. One Community) emphasized collaboration across diverse perspectives to tackle cybersecurity challenges.

Cybersecurity

Cybersecurity Mobile Phishing Artificial Intelligence

GUEST ESSAY: A new year, a familiar predicament — consumers face intensifying cybersecurity risks

The Last Watchdog

JANUARY 3, 2023

Malicious online actors grow ever more sophisticated, making cybersecurity as big a concern for everyday consumers as it ever has been. For instance, phishing, one of the most common, is a social engineering attack used to steal user data. At the start of 2023, consumers remain out in the cold when it comes to online protection.

Risk

Risk Cybersecurity Antivirus Phishing

Cybersecurity Insights with Contrast CISO David Lindner | 04/11/25

Security Boulevard

APRIL 11, 2025

1 How to survive without CISA As CISA scales back , its time for enterprises to wake up to a harsh reality: You cant rely on the government to secure your infrastructure. The post Cybersecurity Insights with Contrast CISO David Lindner | 04/11/25 appeared first on Security Boulevard. Insight No.

CISO

CISO Cybersecurity Government Social Engineering

GUEST ESSAY: Defending ransomware boils down to this: make it very costly for cybercriminals

The Last Watchdog

APRIL 11, 2022

While it’s nice to see law enforcement and governments go after the gangs, that won’t stop the monster that has grown out of control, that we, as an industry, continue to feed. They’re easier to attack and provide moderate consistent payouts with little retribution from law enforcement or governments. Bricks in the wall.

Ransomware

Ransomware Social Engineering Passwords Engineering

What VCs See Happening in Cybersecurity in 2023

eSecurity Planet

DECEMBER 7, 2022

Despite all this, there is one tech category that has held up fairly well: Cybersecurity. Just look at a report from M&A advisory firm Houlihan Lokey , which found that private cybersecurity company funding grew by 9.4% There have been a number of impressive funding rounds this year for cybersecurity startups.

Cybersecurity

Cybersecurity Risk Technology Ransomware

Cisco Contributes to Cyber Hard Problems Report

Cisco Security

JULY 7, 2025

Over the past several years, Hyrum has been obsessed with how artificial intelligence (AI) and machine learning (ML) are impacting the cybersecurity industry. During his time with Cisco and at Robust Intelligence before that, Hyrum has been on a self-proclaimed crusade to get people to understand the cybersecurity risks from AI/ML.

Cyber Risk

Cyber Risk Media Risk Cybersecurity

GUEST ESSAY: Scammers leverage social media, clever con games to carry out digital exploitation

The Last Watchdog

MARCH 20, 2023

Related: How Google, Facebook enable snooping In fact, a majority of scams occur through social engineering. The rise of social media has added to the many user-friendly digital tools scammers, sextortionists, and hackers can leverage in order to manipulate their victims.

Media

Media Identity Theft Internet Internet

Backdoor in XZ Utils That Almost Happened

Schneier on Security

APRIL 11, 2024

Last week, the internet dodged a major nation-state attack that would have had catastrophic cybersecurity repercussions worldwide. The companies benefiting from these freely available libraries need to actually step up, and the government can force them to. Liabilities will help. This essay originally appeared in Lawfare.

Software

Software Engineering Internet Internet

Recent Cyber Attacks: Trends, Tactics, and Countermeasures

Hacker's King

DECEMBER 16, 2024

In the digital age, cyber-attacks are a growing concern for individuals, businesses, and governments worldwide. Understanding the recent trends, tactics, and effective countermeasures is crucial for anyone concerned about cybersecurity. The rise of AI-generated content has made these attacks even more convincing.

Cyber Attacks

Cyber Attacks Phishing Penetration Testing Artificial Intelligence

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Centraleyes

MARCH 13, 2025

New York, the city that never sleeps, is also the city that takes cybersecurity very seriously. If you’re part of the financial services ecosystem hereor interact with businesses regulated by the New York State Department of Financial Servicesyouve likely come across the NYDFS Cybersecurity Regulation.

Cybersecurity

Cybersecurity Financial Services Risk Encryption

Qantas: Breach affects 6 million people, “significant” amount of data likely taken

Malwarebytes

JULY 2, 2025

Qantas says the breach occurred after a cybercriminal targeted a call centre and managed to gain access to the third party platform, presumably via social engineering. The breach at a third party provider is extra painful since Qantas concluded an uplift of third and fourth-party cyber-risk governance processes in 2024.

Social Engineering

Social Engineering Cyber Risk Data breaches Passwords

Cybersecurity Predictions for 2023: My Reflections

Jane Frankland

NOVEMBER 20, 2023

So, having just written my predictions for cybersecurity for the coming year, which will be coming to you shortly, I thought I’d look back at the ones I made for this year (for the International Security Journal (ISJ) ) and discover how accurate they were. Regretfully, I’ve not seen as much change as I would have liked.

Cybersecurity

Cybersecurity Digital transformation Artificial Intelligence Architecture

FTX Collapse Highlights the Cybersecurity Risks of Crypto

eSecurity Planet

NOVEMBER 18, 2022

Ray has wasted little time in assembling a top-notch team, which includes an unnamed cybersecurity forensics firm. He has “worked around the clock” to secure assets, identify crypto on the blockchain , find records, and work with regulators and government authorities. Crypto can also be a way to leverage cybersecurity breaches.

Risk

Risk Cybersecurity Cryptocurrency Social Engineering

Cybersecurity threats: what awaits us in 2023?

SecureList

NOVEMBER 9, 2022

Every year, Kaspersky experts prepare forecasts for different industries, helping them to build a strong defense against any cybersecurity threats they might face in the foreseeable future. The contributors include representatives from government institutions: H.E. This will definitely play its role in corporate cybersecurity.

Cybersecurity

Cybersecurity Cyber Insurance Cybercrime IoT

Qantas Confirms Major Data Breach Impacting 5.7 Million Customers

Centraleyes

JULY 10, 2025

No passwords, credit card numbers, passport data, or government ID details were involved in the breach, and Qantas has stated there is currently no evidence that the data has been leaked publicly. “We These attacks are often executed by sophisticated criminal groups employing social engineering, phishing, or insider access.

Data breaches

Data breaches Social Engineering Government Phishing

ChatGPT: A Brave New World for Cybersecurity

eSecurity Planet

DECEMBER 15, 2022

” Also read: AI & ML Cybersecurity: The Latest Battleground for Attackers & Defenders. “On the one hand, generic phishing works at a massive scale, sending out millions of lures in the form of emails, text messages, and social media postings. ” Read next: AI in Cybersecurity: How It Works.

Cybersecurity

Cybersecurity Phishing Technology Malware

CISA Warns of Phone Scammers Impersonating Agency Employees

SecureWorld News

JUNE 17, 2024

Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding an ongoing phone-based impersonation fraud campaign where scammers are masquerading as CISA staff. Ezra Graziano, Director of Federal Accounts at Zimperium, emphasized the urgency for defense against such evolving social engineering tactics.

Social Engineering

Social Engineering Scams Artificial Intelligence Engineering

APT36 Suspected in India Gov Spoofing Phishing with ClickFix Tactics

Penetration Testing

MAY 7, 2025

Hunt.io, a threat hunting platform, has revealed a sophisticated phishing campaign using ClickFix-style tactics and spoofed Indian government The post APT36 Suspected in India Gov Spoofing Phishing with ClickFix Tactics appeared first on Daily CyberSecurity.

Phishing

Phishing Government Cybersecurity Social Engineering

Spotlight on Cybersecurity Leaders: Hemanth Tadepalli

SecureWorld News

AUGUST 12, 2024

In Q&A format, they share about their professional journeys, unique experiences, and hopes for the future of cybersecurity—along with some personal anecdotes. Hemanth Tadepalli is a a cybersecurity expert with experience across various sectors of security.

Cybersecurity

Cybersecurity Technology Mobile Government

Mishing Is the New Phishing — And It’s More Dangerous

eSecurity Planet

FEBRUARY 26, 2025

Cybercriminals disguise messages as urgent notifications from banks, government agencies, or corporate IT teams, tricking users into providing credentials or downloading malware. Mishing is a phishing attack that uses SMS messages instead of emails to deceive victims into revealing sensitive information or clicking malicious links.

Phishing

Phishing Mobile Social Engineering Data breaches

China, Russia, North Korea Hackers Exploit Windows Security Flaw

Security Boulevard

MARCH 20, 2025

Amost a dozen state-sponsored threat groups from Russia, China, and North Korea have been exploiting a security flaw in WIndows in attacks on governments and critical infrastructure that date back to 2017. According to Trend Micro's VDI unit, Microsoft has no plans to patch the vulnerability.

Government

Government Social Engineering Engineering Malware

New Linux FASTCash Variant: Threats to Banking Systems

Hacker's King

DECEMBER 17, 2024

The cybersecurity world has been abuzz with news of a new Linux variant of FASTCash, a sophisticated malware targeting the banking sector. Train Employees Educating employees about phishing and social engineering tactics can reduce the likelihood of attackers gaining initial access to networks.

Banking

Banking Social Engineering Malware Phishing

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Why Take9 Won’t Improve Cybersecurity

Trending Sources

Cybersecurity Event Cancelled After Being Hit By Cybercriminals

Google's AI Trends Report: Key Insights and Cybersecurity Implications

The Battle for Attention: How Cybersecurity Fights for Truth in a World of Noise

State of Cybersecurity in Canada 2025: Key Insights for InfoSec Leaders

EDR-as-a-Service makes the headlines in the cybercrime landscape

Russia's COLDRIVER Targets Western Entities with 'LOSTKEYS' Malware

Microsoft Expands Security Copilot with AI Agents

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

Understanding the Deepfake Threat

Hackers Exploit Zoom's Remote Control Feature in Cryptocurrency Heists

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

DCRat: Sophisticated RAT Delivered via Phishing Campaign Impersonating Government Entity

Mobile Malware Uses Deepfakes, Social Engineering to Bypass Biometric Authentication

What are the key Threats to Global National Security?

Columbus Ransomware Attack Exposes 500,000+ Residents’ Data: How to Stay Safe

U.S. Indicts North Korean Hackers in Theft of $200 Million

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

WHEN IS CYBERSECURITY IS WEEK

Can Cybersecurity Make You a Millionaire?

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

GUEST ESSAY: A new year, a familiar predicament — consumers face intensifying cybersecurity risks

Cybersecurity Insights with Contrast CISO David Lindner | 04/11/25

GUEST ESSAY: Defending ransomware boils down to this: make it very costly for cybercriminals

What VCs See Happening in Cybersecurity in 2023

Cisco Contributes to Cyber Hard Problems Report

GUEST ESSAY: Scammers leverage social media, clever con games to carry out digital exploitation

Backdoor in XZ Utils That Almost Happened

Recent Cyber Attacks: Trends, Tactics, and Countermeasures

NYDFS Cybersecurity Regulation: Dates, Facts and Requirements

Qantas: Breach affects 6 million people, “significant” amount of data likely taken

Cybersecurity Predictions for 2023: My Reflections

FTX Collapse Highlights the Cybersecurity Risks of Crypto

Cybersecurity threats: what awaits us in 2023?

Qantas Confirms Major Data Breach Impacting 5.7 Million Customers

ChatGPT: A Brave New World for Cybersecurity

CISA Warns of Phone Scammers Impersonating Agency Employees

APT36 Suspected in India Gov Spoofing Phishing with ClickFix Tactics

Spotlight on Cybersecurity Leaders: Hemanth Tadepalli

Mishing Is the New Phishing — And It’s More Dangerous

China, Russia, North Korea Hackers Exploit Windows Security Flaw

New Linux FASTCash Variant: Threats to Banking Systems

Stay Connected