Security Affairs

JUNE 24, 2025

Russia-linked group APT28 uses Signal chats as an attack vector to phish Ukrainian officials with new malware strains. Russia-linked cyberespionage group APT28 is targeting Ukrainian government officials using Signal chats to deliver two new types of malware, tracked as BeardShell and SlimAgent.

Malware 88

Malware Encryption Phishing Government 88

eSecurity Planet

MARCH 28, 2025

A sophisticated cybercrime service known as “Lucid” is exploiting vulnerabilities in Apples iMessage and Androids Rich Communication Services (RCS), allowing cyberthieves to conduct large-scale phishing attacks with alarming success. Automated mobile farms that deploy phishing messages at scale.

Phishing 58

Phishing Scams Cybercrime Encryption 58

The Last Watchdog

DECEMBER 18, 2024

Enterprises must secure AI agents, adopt proactive data governance, and deploy AI-based security platforms. Quantum computing advances are making traditional encryption obsolete, and adversaries are stockpiling data for future decryption. FIPS-203 enables legal PQC deployment, prompting CISOs to overhaul encryption strategies.

Risk 173

Risk Threat Detection Technology Phishing 173

Security Affairs

MARCH 21, 2025

The company exclusively sells exploits to the Russian government and local firms. Given Telegrams end-to-end encryption and widespread use, an exploit that bypasses its security could be a game-changer for cyber espionage. The Russian firm seeks up to $500K for one-click RCE, $1.5M continues the announcement.

Government 144

Government Surveillance Hacking Mobile 144

Security Affairs

NOVEMBER 25, 2024

The campaign primarily targeted government entities, human rights groups, and educational institutions in Central Asia, East Asia, and Europe. XOR encryption) and persists via scheduled tasks with mshta.exe. CHERRYSPY, a Python backdoor, enables encrypted data exfiltration using RSA and AES. HATVIBE uses obfuscation (e.g.,

Malware 120

Malware Encryption Phishing Government 120

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide. Strengthening identity security Enforce phishing-resistant MFA for all privileged accounts.

Ransomware 113

Ransomware IoT Encryption Social Engineering 113

The Last Watchdog

JANUARY 7, 2025

AI-generated phishing emails, adaptive botnets, and automated reconnaissance tools are now common components of cybercriminal tactics. The exercise mirrored the sophisticated techniques observed in the recent attack on French organizations and government agencies, employing AI-generated malware with encryption and evasion tactics.

Threat Detection 130

Threat Detection Engineering Malware Artificial Intelligence 130

Malwarebytes

JUNE 1, 2021

The group conducts cyber espionage operations to target government entities mainly in South Korea. On December 2020, KISA (Korean Internet & Security Agency) provided a detailed analysis about the phishing infrastructure and TTPs used by Kimsuky to target South Korea. Phishing Infrastructure. Victimology.

Government 145

Government Phishing Encryption Media 145

The Last Watchdog

DECEMBER 18, 2024

Part three of a four-part series In 2024, global pressure on companies to implement advanced data protection measures intensified, with new standards in encryption and software transparency raising the bar. state privacy laws, the EUs governance of ethical AI deployment, and updated regulations in India and Japan.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

Security Affairs

APRIL 21, 2025

Check Point Research team reported that Russia-linked cyberespionage group APT29 (aka SVR group , Cozy Bear , Nobelium , BlueBravo , Midnight Blizzard , and The Dukes ) is behind a sophisticated phishing campaign targeting European diplomatic entities, using a new WINELOADER variant and a previously unknown malware called GRAPELOADER.

Malware 107

Malware Phishing Encryption Hacking 107

Security Affairs

APRIL 30, 2025

PRODAFT researchers warn of Russia-linked APT group Nebulous Mantis targeting NATO-related defense organizations Nebulous Mantis, a Russian-speaking cyber espionage group (aka Cuba, STORM-0978 , Tropical Scorpius , UNC2596 ), used RomCom RAT and Hancitor since 2019 to target critical infrastructure, governments, and NATO-linked entities.

Encryption 102

Encryption Ransomware Malware Phishing 102

Krebs on Security

JUNE 7, 2021

In the process of doing so, I encountered a small snag: The FSB’s website said in order to communicate with them securely, I needed to download and install an encryption and virtual private networking (VPN) appliance that is flagged by at least 20 antivirus products as malware. government on multiple occasions over the past five years.

Antivirus 334

Antivirus Encryption VPN Malware 334

Security Affairs

MAY 29, 2025

Google says China-linked group APT41 controlled malware via Google Calendar to target governments through a hacked site. Google warns that China-linked APT41 used TOUGHPROGRESS malware with Google Calendar as C2, targeting various government entities via a compromised website. ” continues the report.

Malware 117

Malware Government Encryption Hacking 117

Security Affairs

NOVEMBER 19, 2024

Ptitsyn reportedly sold the ransomware on darknet forums under aliases like “derxan” and “zimmermanx,” enabling other criminals to encrypt data and demand ransom. Threat actors behind Phobos attacks were observed gaining initial access to vulnerable networks by leveraging phishing campaigns.

Cybercrime 116

Cybercrime Ransomware Healthcare Hacking 116

eSecurity Planet

MAY 25, 2022

Encryption and the development of cryptography have been a cornerstone of IT security for decades and remain critical for data protection against evolving threats. While cryptology is thousands of years old, modern cryptography took off in the 1970s with the help of the Diffie-Hellman-Merkle and RSA encryption algorithms.

Encryption 138

Encryption Computers and Electronics Password Management Passwords 138

Krebs on Security

JANUARY 30, 2024

The government says Urban went by the aliases “ Sosa ” and “ King Bob ,” among others. ” Group-IB dubbed the gang by a different name — 0ktapus — which was a nod to how the criminal group phished employees for credentials. On July 28 and again on Aug. According to an Aug.

Social Engineering 360

Social Engineering Mobile Cybercrime Passwords 360

Security Affairs

DECEMBER 4, 2024

The government agencies released a guide that advises telecom and critical infrastructure defenders on best practices to strengthen network security against PRC-linked and other cyber threats. Strong segmentation with firewalls and DMZs, securing VPN gateways, and ensuring encrypted traffic with TLS v1.3 ” continues the advisory.

Telecommunications 113

Telecommunications Government Mobile Cyber threats 113

Security Affairs

OCTOBER 29, 2021

The Hive ransomware operators have developed a new variant of their malware that can encrypt Linux and FreeBSD. ESET researchers discovered a new Hive ransomware variant that was specifically developed to encrypt Linux and FreeBSD. The Hive ransomware adds the.hive extension to the filename of encrypted files. .

Encryption 138

Encryption Ransomware Spyware Malware 138

Malwarebytes

OCTOBER 10, 2024

Their tweet which explains their motivation hasn’t gone down well among X users, with many commenting that the Internet Archive is not connected to the US Government and, in fact, a very useful tool. Some forms of two-factor authentication (2FA) can be phished just as easily as a password. Will share more as we know it.

Data breaches 123

Data breaches DDOS Internet Internet 123

SecureWorld News

JANUARY 16, 2025

Conducting regular training sessions on recognizing phishing emails, avoiding suspicious downloads, and following cybersecurity protocols can build a resilient workforce. Hackers used compromised credentials to gain access to Colonial Pipeline's network, deploying ransomware that encrypted critical systems.

Energy and Utilities 109

Energy and Utilities IoT Backups Threat Detection 109

Security Affairs

DECEMBER 8, 2024

officials urge Americans to use encrypted apps amid unprecedented cyberattack The Great Pokmon Go Spy Panic Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,newsletter) Now He Wants to Help You Escape, Too Dozens of Countries Hit in Chinese Telecom Hacking Campaign, Top U.S.

Artificial Intelligence 103

Artificial Intelligence Spyware Hacking Ransomware 103

IT Security Guru

NOVEMBER 1, 2024

Cyber attacks can compromise critical infrastructure, financial systems, and sensitive government data. Phishing and Social Engineering: These tactics manipulate individuals to disclose sensitive information. With more nations and corporations investing heavily in digital platforms, cybersecurity investments have become paramount.

Technology 109

Technology Cyber Attacks Government Risk 109

eSecurity Planet

NOVEMBER 6, 2024

This attack underscores a critical lesson for businesses: even the most vital institutions, such as a city government, are vulnerable to cyberthreats. With cyberthreats getting more advanced , businesses and local governments alike must work together to share resources, insights, and best practices to improve cybersecurity across the board.

Ransomware 115

Ransomware Authentication Identity Theft Penetration Testing 115

Cisco Security

SEPTEMBER 28, 2021

What does phishing mean? All you see is an alarming screen that shouts, “Your files are encrypted!”. What’s phishing? Phishing is a simple and popular way for hackers trick and hook you. Spear phishing is a special type. Why is there a ‘p’ in phishing? For example, what is ransomware and how does it work?

Phishing 145

Phishing Ransomware Passwords Cryptocurrency 145

SecureList

NOVEMBER 29, 2024

Mobile statistics Targeted attacks New APT threat actor targets Russian government entities In May 2024, we discovered a new APT targeting Russian government organizations. Two months later, in July 2024, CloudSorcerer launched further attacks against Russian government organizations and IT companies.

Energy and Utilities 104

Energy and Utilities Ransomware Malware Government 104

Hacker Combat

MAY 10, 2022

Individuals, corporations, governments, and critical infrastructure are potential cyber-attack targets. Phishing emails are one way to do it. A researcher has demonstrated how a vulnerability common to several ransomware families can help take control of the malware and stop it from encrypting files on infected devices.

Encryption 132

Encryption Ransomware Malware Cyber Attacks 132

SecureList

MAY 3, 2021

Banking phishing: new version of an old scheme. Clients of several Dutch banks faced a phishing attack using QR codes. This past year, cybercriminals have actively exploited the topic of government payouts , most often in relation to damage caused by the pandemic. Quarterly highlights. Vaccine with cyberthreat.

Phishing 137

Phishing Banking Accountability Computers and Electronics 137

SecureWorld News

MAY 9, 2025

The development marks a significant escalation in COLDRIVER's cyber espionage activities, which have traditionally focused on credential phishing. The malware has been observed in campaigns as recent as April 2025, targeting advisors to Western governments and militaries, journalists, think tanks, NGOs, and individuals connected to Ukraine.

Malware 87

Malware Social Engineering Government Engineering 87

Security Affairs

DECEMBER 29, 2023

Ukraine’s CERT (CERT-UA) warned of a new phishing campaign by the APT28 group to deploy previously undocumented malware strains. CERT-UA discovered multiple phishing attacks aimed at government organizations between December 15 and December 25. file classified as MASEPIE.

Phishing 142

Phishing Malware Computers and Electronics Internet 142

SecureList

NOVEMBER 28, 2024

However, P8 contains many built-in functions and redesigns of the communication protocol and encryption algorithm, making it a well-designed and powerful espionage platform. Based on limited telemetry, we believe with medium to low confidence that some of the initial infections were spear-phishing emails.

Malware 118

Malware Government Software Spyware 118

The Hacker News

DECEMBER 22, 2023

Indian government entities and the defense sector have been targeted by a phishing campaign that's engineered to drop Rust-based malware for intelligence gathering. New Rust-based payloads and encrypted PowerShell commands have been utilized to exfiltrate

Government 93

Government Malware Encryption Phishing 93

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency 112

Cryptocurrency Hacking Malware Data breaches 112

The Last Watchdog

SEPTEMBER 28, 2022

Phishing attacks are nothing new, but scammers are getting savvier with their tactics. Other Iranian-based cyberattacks have included hackers targeting Albanian government systems and spear phishing scams. Here are four new phishing trends keeping businesses on their toes. Spear phishing. Phishing via texting.

Phishing 124

Phishing Scams Cybercrime Banking 124

eSecurity Planet

DECEMBER 7, 2023

Encryption scrambles data to make it unreadable to those without decryption keys. Proper use of encryption preserves secrecy and radically lowers the potential damage of a successful cybersecurity attack. Encryption algorithm types will provide an overview of the mathematical algorithms used to encrypt data (AES, RSA, etc.),

Encryption 110

Encryption Authentication Passwords Password Management 110

Krebs on Security

FEBRUARY 10, 2020

commercial and government interests. “Indeed, about 80 percent of our economic espionage prosecutions have implicated the Chinese government, and about 60 percent of all trade secret thefts cases in recent years involved some connection with China,” he said. “We answer this question all the time. .

Hacking 324

Hacking Identity Theft Government Phishing 324

Security Affairs

OCTOBER 13, 2023

A cyberespionage campaign, tracked as Stayin’ Alive, targeted high-profile government and telecom entities in Asia. The threat actors leverage spear-phishing emails to deliver archive files utilizing DLL side-loading schemes. report – CurKeep collects information about the infected machine. Is it linked to ToddyCat APT?

Government 132

Government Encryption Phishing Malware 132

Hacker's King

DECEMBER 16, 2024

In the digital age, cyber-attacks are a growing concern for individuals, businesses, and governments worldwide. These attacks often involve encrypting data and demanding a ransom for its decryption. Employee Training : Training employees on recognizing phishing attempts and practicing good cybersecurity hygiene is essential.

Cyber Attacks 59

Cyber Attacks Phishing Penetration Testing Artificial Intelligence 59