Engineering, Social Engineering and Threat Reports

CrowdStrike 2025 Global Threat Report: 51-Second Breaches Shake Cybercrime

eSecurity Planet

MARCH 3, 2025

In a comprehensive new report, cybersecurity leader CrowdStrike unveiled a rapidly evolving threat landscape that challenges traditional defenses. Unprecedented speed and scale of attacks The report reveals that some cyberattacks break out within 51 seconds, with an average breach time of 48 minutes.

Threat Reports

Threat Reports Cybercrime Artificial Intelligence Social Engineering

CrowdStrike 2024 Global Threat Report: 6 Key Takeaways

Tech Republic Security

FEBRUARY 26, 2024

Identity-based and social engineering attacks still take center stage, according to the CrowdStrike 2024 Global Threat Report.

Threat Reports

Threat Reports Social Engineering Engineering Phishing

Threat Report Portugal: Q2 2022

Security Affairs

JULY 4, 2022

The Threat Report Portugal: Q2 2022 compiles data collected on the malicious campaigns that occurred from March to June, Q2, 2022. This makes it a reliable, trustworthy, continuously updated source, focused on the threats targeting Portuguese citizens. SecurityAffairs – hacking, Threat Report Portugal ).

Threat Reports

Threat Reports Phishing Banking Malware

Honeywell Report OT Under Siege

SecureWorld News

JUNE 6, 2025

The Honeywell 2025 Cyber Threat Report delivers a sobering snapshot of today's industrial cybersecurity landscape: cyberattacks targeting operational technology (OT) environments are no longer rare or speculative—they're persistent, highly targeted, and increasingly sophisticated. OT defenders must plan for: Hybrid threats (e.g.,

Media

Media Social Engineering Malware Engineering

Threat Report Portugal: Q4 2021

Security Affairs

FEBRUARY 20, 2022

The Threat Report Portugal: Q4 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q4, of 2021. This makes it a reliable and trustworthy and continuously updated source, focused on the threats targeting Portuguese citizens. SecurityAffairs – hacking, Threat Report Portugal ).

Threat Reports

Threat Reports Phishing Banking Malware

Threat Report Portugal: Q3 & Q4 2022

Security Affairs

APRIL 6, 2023

The Threat Report Portugal: H2 2022 compiles data collected on the malicious campaigns that occurred from July to December, H2, 2022. This makes it a reliable, trustworthy, continuously updated source, focused on the threats targeting Portuguese citizens. The submissions were classified as either phishing or malware.

Threat Reports

Threat Reports Phishing Malware Banking

Scammers get sneaky: New malware distribution tactics revealed in Avast Threat Report

Security Boulevard

MAY 4, 2023

The first quarter of 2023 saw a notable rise in cyberattacks targeting trust in established tech brands Microsoft and Adobe, according to the Avast Q1 2023 Threat Report. The report also revealed a 40% increase in the share of phishing and smishing attacks from the previous year.

Threat Reports

Threat Reports Social Engineering Malware Phishing

Do You Trust Your Smart TV?

Security Affairs

AUGUST 2, 2021

According to the 2020 Insider Threat Report , contractors, service providers, and temporary workers pose the greatest risk to 50% of organizations. The cleaner’s insider access takes care of the physical access challenge, while detachment to the organization makes the individual more susceptible to social engineering.

Social Engineering

Social Engineering Healthcare Engineering Hacking

Phishing-Resistant MFA: Why FIDO is Essential

Thales Cloud Protection & Licensing

MAY 7, 2025

Todays threat actors use AI to craft compelling phishing campaigns and advanced social engineering tactics to slip past MFA, resulting in credential theft and account takeovers. Traditional Multi-Factor Authentication (MFA), while a step up from password-only security, is no longer enough to fight modern phishing schemes.

Phishing

Phishing Authentication Passwords Social Engineering

New Report on Current and Emerging Cyber Threats to Healthcare

CyberSecurity Insiders

MARCH 25, 2023

Health-ISAC, a nonprofit, private sector, member-driven organization, has released its annual cyber threat report on current and emerging threat activity in the healthcare industry, in collaboration with Booz Allen Hamilton Cyber Threat Intelligence.

Cyber threats

Cyber threats Healthcare Social Engineering Threat Reports

Avast Threat Labs Q4 2022 Threat Report | Avast

Security Boulevard

FEBRUARY 9, 2023

The Avast Threat Labs Q4 2022 Threat Report observed a rise in social engineering attacks during the final quarter of 2022, including invoice and refund fraud, tech support scams, and others aimed at stealing money. The post Avast Threat Labs Q4 2022 Threat Report | Avast appeared first on Security Boulevard.

Threat Reports

Threat Reports Adware Social Engineering Scams

Sophos finds new malware being distributed through email

CyberSecurity Insiders

NOVEMBER 11, 2021

The motive behind such socially engineered email attack is simple, to create fear among the victim and make him/her open an attachment filled with a malicious link leading to a malware download. Sophos, a cloud-native data security firm, has discovered in its research that a new malware is being distributed through threatening email.

Malware

Malware Social Engineering Threat Reports Engineering

News Alert: IRONSCALES beta-launches a new generative AI tool to improve email security

The Last Watchdog

JUNE 21, 2023

June 20, 2023 – IRONSCALES, the leading enterprise cloud email security platform protecting more than 10,000 global organizations worldwide, today announced the Beta launch of Themis Co-pilot for Microsoft Outlook , a GPT-powered chat assistant for self-service threat reporting.

Phishing

Phishing Artificial Intelligence Social Engineering Data breaches

Security Affairs newsletter Round 530 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JUNE 29, 2025

Petersburg Anthropic study: Leading AI models show up to 96% blackmail rate against executives Serial Hacker “IntelBroker” Charged For Causing $25 Million In Damages To Victims Police arrest five high-profile French hackers behind a notorious data theft forum Cybercriminals Abuse Open-Source Tools To Target Africa’s Financial Sector FBI Warns of Scattered (..)

Data breaches

Data breaches Ransomware Social Engineering Telecommunications

Asia's Security Leaders Feel Underprepared for Future Threats: Report

Dark Reading

MARCH 12, 2018

A new study highlights major concerns of cybersecurity leaders in Asia, where most fear critical infrastructure attacks, advanced threats, and social engineering.

Threat Reports

Threat Reports Social Engineering Engineering Cybersecurity

From Data to Defense: Insights from ReliaQuest’s 2025 Annual Threat Report

Digital Shadows

FEBRUARY 24, 2025

Editors note: This report was authored by Kimberley Bromley, Hayden Evans, and Joseph Keyes. Today, were proud to present the ReliaQuest Annual Cyber-Threat Report: 2025. Now in its third year, this report offers a close look at the top cyber threats our customers faced throughout 2024.

Threat Reports

Threat Reports Cyber threats Phishing Social Engineering

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

eSecurity Planet

MAY 1, 2025

RSA targets passwordless and help desk threats RSA unveiled a new enterprise-ready passwordless platform aimed at thwarting advanced identity attacks, especially those that attempt to bypass help desks using social engineering. Protection against deepfakes, fraud, outages, and AI-based impersonation.

Cybersecurity

Cybersecurity Mobile Phishing Artificial Intelligence

Sophisticated Attacks Against Mobile Devices Surge 187%

SecureWorld News

JUNE 29, 2023

Cybersecurity firm Zimperium recently released its 2023 Global Mobile Threat Report 2023 , revealing a concerning increase in sophisticated attacks targeting mobile devices. The report sheds light on the escalating threat landscape faced by mobile-powered businesses.

Mobile

Mobile IoT Social Engineering Phishing

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

Phishing and Fraud Bad actors can defraud customers out of their money, financial details, and other sensitive data by using deception and social engineering. According to a recent study , the average cost of a retail data breach in 2024 will reach $3.48 million, representing an 18% increase compared to 2023.

Retail

Retail Cyber Risk Risk DDOS

Data Privacy and Security: It Takes Two to Tango

Thales Cloud Protection & Licensing

JANUARY 24, 2022

This trend is demonstrated in the latest Thales Data Threat Report 2021 ; 55% of the survey respondents reported that more than 40% of their data now resides in a cloud platform. However, with technology innovation comes new risks, security challenges and threats.

Data privacy

Data privacy Data breaches Social Engineering Technology

Identity at a Crossroads: Why Existential Identity Matters

Thales Cloud Protection & Licensing

APRIL 7, 2025

AI-powered social engineering makes scams more convincing, while stolen passwords enable criminals to log into corporate networks and move laterally unnoticed. Deepfakes create hyper-realistic fake videos or voices that fool people, and identity theft helps attackers pretend to be someone else to steal data.

Authentication

Authentication Identity Theft Digital transformation Passwords

Identity-Based Attacks Increase, MFA-Thwarting Tactics Rise

Security Boulevard

NOVEMBER 23, 2022

Multifactor authentication (MFA) push notification fatigue attacks are increasing and are proving more effective, according to Expel’s quarterly threat report, based on data from the company’s customer base.

Authentication

Authentication Threat Reports Social Engineering Engineering

New Linux Malware Shikitega Can Take Full Control of Devices

eSecurity Planet

SEPTEMBER 15, 2022

Employees should be trained against various social engineering and phishing attacks, as it’s a classic vector used by cybercriminals to deploy malware. AT&T labs provided a list of IoCs (indicators of compromise) that system administrators can use to add specific rules to security solutions.

Malware

Malware Social Engineering System Administration Antivirus

Top 5 Insider Threats to Look Out For in 2023

Security Affairs

MARCH 17, 2023

According to statistics on insider threats, these threats may originate from employees, business contractors, or other reliable partners with simple access to your network. However, insider threat reports and recent developments have shown a sharp rise in the frequency of insider attacks.

Social Engineering

Social Engineering Risk Technology Engineering

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Webroot

JANUARY 7, 2022

Threats abound in 2021. In 2021, we witnessed so many competing shifts, many of which we detailed early on in our 2021 BrightCloud® Threat Report. In our mid-year BrightCloud® Threat report , we found a 440% increase in phishing, holding the record for the single largest phishing spike in one month alone.

Cybercrime

Cybercrime Phishing Ransomware Cryptocurrency

Cryptocurrency Phishing Threats Luring New Victims

Security Boulevard

APRIL 14, 2023

Cryptocurrency-related phishing attacks are on the rise, with a report from Kaspersky recording an increase of 40% in 2022 compared to the previous year. The post Cryptocurrency Phishing Threats Luring New Victims appeared first on Security Boulevard.

Cryptocurrency

Cryptocurrency Phishing Threat Reports Social Engineering

2022 Security Challenges and 2023 Security Predictions

CyberSecurity Insiders

NOVEMBER 29, 2022

According to the SonicWall Cyber Threat Report, the global volume of ransomware is increasing by 98%. Ransomware, as projected would continue to be a leading way for bad actors to leverage control and data to monetize hacking organizations. Phishing Targeted Attacks.

Phishing

Phishing Technology Mobile Ransomware

Hacker Personas Explained: Know Your Enemy and Protect Your Business

Webroot

FEBRUARY 11, 2021

As we mentioned in a previous blog , hackers come in many forms, but their methods can generally be classified into three distinct types of cybercriminals: The Impersonator – Hackers that pretend to be others, often using social engineering and human psychology to trick users.

Scams

Scams Phishing Firewall Social Engineering

The Prevalence of DarkComet in Dynamic DNS

Security Boulevard

AUGUST 6, 2024

Threat Intelligence Report Date: August 6, 2024 Prepared by: David Brunsdon, Threat Intelligence - Security Engineer, HYAS Dynamic DNS (DDNS) is a service that automatically updates the Domain Name System (DNS) in real-time to reflect changes in the IP addresses of a domain. Want more threat intel on a weekly basis?

DNS

DNS Malware Social Engineering Phishing

Phishing-Resistant MFA: Why FIDO is Essential

Security Boulevard

MAY 7, 2025

Todays threat actors use AI to craft compelling phishing campaigns and advanced social engineering tactics to slip past MFA, resulting in credential theft and account takeovers. Traditional Multi-Factor Authentication (MFA), while a step up from password-only security, is no longer enough to fight modern phishing schemes.

Phishing

Phishing Authentication Passwords Social Engineering

Embracing Automation in Cyber Threat Intelligence: The Key to Timely Protection

SecureWorld News

SEPTEMBER 27, 2023

Threat Intelligence (TI) representation across different levels There is a lot of information on cyberattacks on the internet, and, as a rule, the most helpful information is contained in cyber threat reports ( Threat Intelligence Reports ).

Cyber threats

Cyber threats Artificial Intelligence Malware Threat Reports

Verizon’s 2022 Mobile Security Index Report – Confirming what we all suspected

Thales Cloud Protection & Licensing

AUGUST 8, 2022

The Verizon report includes a startling statistic that appeared in the 2022 Thales Data Threat Report that “two-fifths of organizations are not confident that their current security systems could effectively secure the remote work environment.”. Security is a shared responsibility.

Mobile

Mobile Social Engineering Risk Threat Reports

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

eSecurity Planet

MAY 1, 2025

RSA targets passwordless and help desk threats RSA unveiled a new enterprise-ready passwordless platform aimed at thwarting advanced identity attacks, especially those that attempt to bypass help desks using social engineering. Protection against deepfakes, fraud, outages, and AI-based impersonation.

Cybersecurity

Cybersecurity Mobile Phishing Artificial Intelligence

Cybersecurity Awareness Month 2024: The Top Four Ways to Secure Our World

Security Boulevard

SEPTEMBER 30, 2024

Recognize and Report Phishing According to the Thales 2024 Data Threat Report , phishing is the second fastest-growing attack. Despite the importance and the variety of MFA methods, Thales 2024 DTR report shows that only 46% of the organizations use multi-factor authentication for more than 40% of their employees.

Cybersecurity

Cybersecurity Password Management Passwords Phishing

The Ongoing Cyber Threat to Critical Infrastructure

Thales Cloud Protection & Licensing

JULY 21, 2022

With that in mind, Thales has launched the 2022 Thales Data Threat Report Critical Infrastructure Edition, which includes responses from 300 security leaders and practitioners within critical infrastructure organizations. Download the full Thales 2022 Data Threat Report for the Critical Infrastructure for more information.

Cyber threats

Cyber threats Energy and Utilities Ransomware IoT

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

eSecurity Planet

APRIL 30, 2025

RSA targets passwordless and help desk threats RSA unveiled a new enterprise-ready passwordless platform aimed at thwarting advanced identity attacks, especially those that attempt to bypass help desks using social engineering. Protection against deepfakes, fraud, outages, and AI-based impersonation.

Cybersecurity

Cybersecurity Mobile Artificial Intelligence Phishing

Security Roundup September 2023

BH Consulting

SEPTEMBER 14, 2023

Its 2023 phishing threats report combines findings from email security data with a survey of security decision makers. MORE As social engineering tactics improve, how can potential victims fight back? The World Economic Forum has a useful blog with tips on safeguarding against BEC scams.

Scams

Scams Passwords Social Engineering Cybersecurity

AI Dilemma: Emerging Tech as Cyber Risk Escalates

Trend Micro

JULY 2, 2025

It’s a threat flagged by the NCSC, which has warned that the coming two years could see: An increase in the “frequency and intensity” of cyber threats, including reconnaissance, vulnerability research and exploit development (VRED), social engineering, basic malware generation, and data exfiltration More threat actors using AI-as-a-service offerings (..)

Cyber Risk

Cyber Risk Risk Cyber threats Artificial Intelligence

APT trends report Q1 2021

SecureList

APRIL 27, 2021

On January 25, the Google Threat Analysis Group (TAG) announced that a North Korean-related threat actor had targeted security researchers. Our report, available to subscribers of our APT threat reports, includes discussion of both the passive-listener payload and the loader functionality included in the main module.

Malware

Malware Government Spyware Social Engineering

Cybersecurity Awareness Month 2024: The Top Four Ways to Secure Our World

Thales Cloud Protection & Licensing

SEPTEMBER 30, 2024

Recognize and Report Phishing According to the Thales 2024 Data Threat Report , phishing is the second fastest-growing attack. Despite the importance and the variety of MFA methods, Thales 2024 DTR report shows that only 46% of the organizations use multi-factor authentication for more than 40% of their employees.

Cybersecurity

Cybersecurity Password Management Passwords Phishing

Protecting your Customers and Brand in 2022: Are you doing enough?

Jane Frankland

APRIL 28, 2022

Targeted attacks like these, plus social engineering, specifically phishing – where attackers pose as a trusted source, prey on human vulnerability, and use email or malicious websites to gain the information they want – are effective but they aren’t the only problem. Post pandemic, more research has come to light.

CISO

CISO Mobile Technology Risk

How Frankfurt Stopped Emotet In Its Tracks

McAfee

JANUARY 15, 2020

There are several steps you can take to keep Emotet from establishing a stronghold in your network: Educate Your Employees: The most important step is to educate your employees on how to identify phishing and social engineering attempts. Above all, don’t fall into the trap of thinking it couldn’t happen to you.

Ransomware

Ransomware Malware Education Social Engineering

APT trends report Q3 2022

SecureList

NOVEMBER 1, 2022

We have been tracking this threat actor for several years and previously published an APT threat report describing its malicious operations. Earlier this year, Symantec published a report describing a campaign called Antlion, which has been observed targeting financial institutions in Taiwan. Final thoughts.

Malware

Malware Ransomware Spyware Encryption

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

Thales Cloud Protection & Licensing

NOVEMBER 5, 2024

In 2023, 74% of all breaches include the human element, meaning people were involved through mistakes, misuse of privileges, use of stolen credentials, or social engineering tactics. The human element risk cannot be understated.

Retail

Retail Data breaches Digital transformation Risk

CrowdStrike 2025 Global Threat Report: 51-Second Breaches Shake Cybercrime

CrowdStrike 2024 Global Threat Report: 6 Key Takeaways

Trending Sources

Threat Report Portugal: Q2 2022

Honeywell Report OT Under Siege

Threat Report Portugal: Q4 2021

Threat Report Portugal: Q3 & Q4 2022

Scammers get sneaky: New malware distribution tactics revealed in Avast Threat Report

Do You Trust Your Smart TV?

Phishing-Resistant MFA: Why FIDO is Essential

New Report on Current and Emerging Cyber Threats to Healthcare

Avast Threat Labs Q4 2022 Threat Report | Avast

Sophos finds new malware being distributed through email

News Alert: IRONSCALES beta-launches a new generative AI tool to improve email security

Security Affairs newsletter Round 530 by Pierluigi Paganini – INTERNATIONAL EDITION

Asia's Security Leaders Feel Underprepared for Future Threats: Report

From Data to Defense: Insights from ReliaQuest’s 2025 Annual Threat Report

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

Sophisticated Attacks Against Mobile Devices Surge 187%

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Data Privacy and Security: It Takes Two to Tango

Identity at a Crossroads: Why Existential Identity Matters

Identity-Based Attacks Increase, MFA-Thwarting Tactics Rise

New Linux Malware Shikitega Can Take Full Control of Devices

Top 5 Insider Threats to Look Out For in 2023

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Cryptocurrency Phishing Threats Luring New Victims

2022 Security Challenges and 2023 Security Predictions

Hacker Personas Explained: Know Your Enemy and Protect Your Business

The Prevalence of DarkComet in Dynamic DNS

Phishing-Resistant MFA: Why FIDO is Essential

Embracing Automation in Cyber Threat Intelligence: The Key to Timely Protection

Verizon’s 2022 Mobile Security Index Report – Confirming what we all suspected

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

Cybersecurity Awareness Month 2024: The Top Four Ways to Secure Our World

The Ongoing Cyber Threat to Critical Infrastructure

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

Security Roundup September 2023

AI Dilemma: Emerging Tech as Cyber Risk Escalates

APT trends report Q1 2021

Cybersecurity Awareness Month 2024: The Top Four Ways to Secure Our World

Protecting your Customers and Brand in 2022: Are you doing enough?

How Frankfurt Stopped Emotet In Its Tracks

APT trends report Q3 2022

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

Stay Connected