eSecurity Planet

FEBRUARY 26, 2025

Cybercriminals are shifting their focus from emails to text messages, using mishing a more deceptive form of phishing to target mobile users and infiltrate corporate networks, according to new security research by Zimperium. Vishing: Also known as voice phishing. What is mishing? and 9%in Brazil.

Phishing

Hacker's King

DECEMBER 28, 2024

Instagram is a top social media platform with over 2 billion active users, making it a prime target for hackers. Data breaches and account hacks are a growing concern for users, especially with the personal and professional information shared on the platform. Revoke access to any app you no longer use or trust.

Data breaches

Webroot

APRIL 22, 2025

If a company you do business with becomes part of a data breach, cybercriminals may have full access to your confidential information. Unfortunately, data breaches are on the rise and affecting more companies and consumers than ever. billion people received notices that their information was exposed in a data breach.

Data breaches

Security Affairs

MAY 13, 2025

BleepingComputer reported that DragonForce ransomware affiliates usedScattered Spider social engineering tacticsto target Marks and Spencer. ” The stolen M&S data may include contact info, birthdate, order history, household data, and masked card details, but not full payment info.

Data breaches

Malwarebytes

JULY 29, 2025

Insurance company Allianz Life was breached, exposing the data of most of its 1.4 According to Allianz, an attacker gained access to a third-party, cloud-based Customer Relationship Management (CRM) system through social engineering. 2FA that relies on a FIDO2 device can’t be phished. million American customers.

Social Engineering

eSecurity Planet

MARCH 3, 2025

The report details how threat actors harness automation, artificial intelligence, and advanced social engineering to scale their operations. Their methods include using generative AI to create convincing phishing emails , fraudulent websites, and fictitious profiles designed to deceive and infiltrate organizational defenses.

Threat Reports

SecureWorld News

JUNE 9, 2025

Additionally, a distributed workforce, ranging from remote maintenance technicians to cabin crews, multiplies entry points for social-engineering tactics like phishing. Aircraft themselves are nodes on data networks, constantly transmitting telemetry, engine performance metrics, and passenger connectivity data.

Cybersecurity

Webroot

MARCH 3, 2025

The growing risks to your data During the third quarter of 2024, data breaches exposed more than 422 million records worldwide. Millions of customers were put at risk when their social security numbers, phone numbers, and other sensitive personal information were leaked.

Consumer Protection

Centraleyes

JULY 10, 2025

Qantas Airways has confirmed a large-scale data breach affecting approximately 5.7 According to the airline, the breach occurred through an external platform used by an offshore call center partner. The compromised data includes names, email addresses, and Frequent Flyer numbers.

Data breaches

eSecurity Planet

JULY 14, 2025

Scattered Spider is known for using clever social engineering to trick IT help desks into bypassing security protocols, especially multi-factor authentication (MFA). She stressed that even if a breach didn’t directly impact you, your information could still be used in phishing scams or identity theft.

Insurance

Malwarebytes

JULY 2, 2025

Qantas says the breach occurred after a cybercriminal targeted a call centre and managed to gain access to the third party platform, presumably via social engineering. But it’s noteable that this weekend the FBI put out a warning on social media about ransomware attacks targeting airlines. Check the vendor’s advice.

Social Engineering

Security Affairs

MARCH 24, 2025

“Cloaks attack strategy involves acquiring network access through Initial Access Brokers (IABs) or social engineering methods such as phishing, malvertising, exploit kits, and drive-by downloads disguised as legitimate updates like Microsoft Windows installers.” ” reads a report published by Halcyon.

Ransomware

Penetration Testing

JULY 13, 2025

Google exposes a vast phishing campaign hijacking Booking.com reservation chats to steal credit card details from travelers, impacting thousands globally since Nov 2023.

Phishing

Security Boulevard

JANUARY 20, 2025

Successful exploitation requires social engineering users into manipulating a specially crafted file. Phishing and Scams Covers popular phishing schemes affecting end users - smishing, vishing, and any new scam/phish. These probably don't affect most users reading this. CVE-2025-21308.

Surveillance

Approachable Cyber Threats

MARCH 12, 2025

Category Awareness, Social Enginering Risk Level Phishing emails are getting harder to detect. What is phishing, and why is it such a big deal?" Phishing is one of the oldest tricks in the hacker playbook - but its also one of the most effective. Alright, but cant I just spot and delete phishing emails?"

Phishing

Centraleyes

JULY 27, 2025

A cyberattack on Allianz Life Insurance Company of North America has exposed sensitive personal data tied to more than one million U.S. The breach was the direct result of a social engineering attack on a third-party vendor. The challenge is that social engineering doesn’t typically break patterns; it mimics them.

Social Engineering

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

trillion, the risk of a data breach extends beyond immediate financial losses. Data Security Thales | Cloud Protection & Licensing Solutions More About This Author > As Black Friday and Cyber Monday loom, the stakes for retailers extend far beyond enticing deals and record sales. trillion and $5.28 trillion and $5.28

Retail

Security Affairs

JUNE 29, 2025

House banned WhatsApp on government devices due to security concerns Russia-linked APT28 use Signal chats to target Ukraine official with malware China-linked APT Salt Typhoon targets Canadian Telecom companies U.S.

Data breaches

Security Affairs

JANUARY 12, 2025

cannabis dispensary STIIIZY disclosed a data breach A novel PayPal phishing campaign hijacks accounts Banshee macOS stealer supports new evasion mechanisms Researchers disclosed details of a now-patched Samsung zero-click flaw Phishers abuse CrowdStrike brand targeting job seekers with cryptominer China-linked APT group MirrorFace targets Japan U.S.

Data breaches

SecureWorld News

MAY 28, 2025

In early May 2025, two of the United Kingdom's best-known grocers, Marks & Spencer (M&S) and the Co-op, as well as luxury retailer Harrods, were struck by sophisticated social-engineering attacks that tricked IT teams into resetting critical passwords and deploying ransomware across their networks. Attacks Spark U.S.

Retail

Zero Day

JUNE 22, 2025

Close Home Tech Security 16 billion passwords leaked across Apple, Google, more: What to know and how to protect yourself Wondering if your information is posted online from a data breach? PT Moor Studio/Getty With so much news about data breaches, you have to be careful not to panic each time you hear of a new one.

Passwords

Security Boulevard

JUNE 22, 2025

Cybernews researchers reported that since the beginning of the year, they've detected 30 datasets containing 16 billion stolen credentials exposed on the internet, most of which had not been previously recorded and represent a massive trove of records that can be used in ransomware, phishing, BEC, and other attacks.

Phishing

SecureList

DECEMBER 9, 2024

This case underscores the serious risk that social engineering and supply chain attacks pose to open-source projects. Cisco Duo supply chain data breach What happened? Another threat that looms large is data breaches. Kaspersky presented detailed technical analysis of this case in three parts.

Internet

Hacker's King

MAY 24, 2025

No day goes by without risk of data breaches, identity theft, or financial losses to both people and businesses around the world. The startling fact is that more than 55% of breaches stem from credential attack vectors. In simpler terms, phishing scams, brute force attacks, and MFA bypass techniques.

Cyber Attacks

Jane Frankland

MAY 3, 2025

While details remain sparse, reports suggest social engineering tactics like phishing, SIM swapping, and multi-factor authentication (MFA) fatigue attacks may have been used to infiltrate systems. Communicate and Collaborate When data breaches occur, organisations must prioritise transparency and accountability.

Cyber Attacks

SecureWorld News

JUNE 4, 2025

Cartier: a luxury brand, breached French jeweler Cartier confirmed a breach involving names, email addresses, and countries of residence of select clients. Even basic customer data can be used for curated phishing attacks," warned Nivedita Murthy, Senior Staff Consultant at Black Duck.

Retail

Hacker's King

OCTOBER 22, 2024

With increasing threats, such as ransomware, data breaches, and phishing attacks, the demand for skilled cybersecurity experts is on the rise. As businesses, governments, and individuals continue to migrate to digital platforms, the risk of cyberattacks rises exponentially.

Cybersecurity

Hacker's King

OCTOBER 26, 2024

Cybersecurity Week highlights various forms of threats, including phishing scams, ransomware attacks, and data breaches, which can have devastating effects on individuals and businesses alike. Be Cautious with Email Attachments: Phishing attacks often come disguised as legitimate emails.

Cybersecurity

Security Affairs

FEBRUARY 9, 2025

US Justice Department says cybercrime forum allegedly affected 17 million Americans Cybercrime is increasingly complex.

Spyware

Zero Day

JUNE 20, 2025

Here are the facts and how to protect yourself Wondering if your information is posted online from a data breach? PT Moor Studio/Getty With so much news about data breaches, you have to be careful not to panic each time you hear of a new one.   Think you've been involved in a data breach?

Passwords

Security Affairs

DECEMBER 1, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime

BH Consulting

JUNE 18, 2025

Brian referred to the Verizon Data Breach Investigations Report that’s considered a leading source of information for the security community. Phishing has opened the door to smishing (phishing via SMS text message), vishing (video) and quishing (QR codes). After he did so, the response was beautifully simple. “Oh.

Cybersecurity

Security Through Education

MARCH 18, 2025

Social media provides us with a fast, efficient, and exciting way to share our interests and experiences with our friends, but who outside of our sphere REALLY needs to know all this information about us? Unfortunately, this can put us at risk for spear phishing attacks, identity theft , and other forms of data compromise.

Accountability

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. This increase is likely driven by high employee turnover and easy access to phishing kits. Meanwhile, “RansomHub” is rising rapidly due to its attractive ransomware-as-a-service (RaaS) model.

Cyber Attacks

Jane Frankland

FEBRUARY 7, 2025

When data breaches escalate, cyber-attacks grow more sophisticated, nation states ramp up their digital warfare, and regulations tighten the noose, staying ahead isnt just an optionits your only line of defence. Beyond the immediate financial losses caused by data breaches, the damage to a companys reputation can be devastating.

Cyber Risk

Security Affairs

OCTOBER 27, 2024

Chinese cyber spies targeted phones used by Trump and Vance Irish Data Protection Commission fined LinkedIn €310M for GDPR infringement Change Healthcare data breach impacted over 100 million people OnePoint Patient Care data breach impacted 795916 individuals From Risk Assessment to Action: Improving Your DLP Response U.S.

Data breaches

NetSpi Executives

JULY 7, 2025

They focus on securing customer data and intellectual property, conducting phishing awareness training, implementing multi-factor authentication, and ensuring proper password rotation policies. Early detection can mean the difference between containing a limited breach and experiencing a catastrophic security incident.

Social Engineering