Engineering and Threat Reports - Cyber Security Informer

CrowdStrike 2025 Global Threat Report: 51-Second Breaches Shake Cybercrime

eSecurity Planet

MARCH 3, 2025

In a comprehensive new report, cybersecurity leader CrowdStrike unveiled a rapidly evolving threat landscape that challenges traditional defenses. Unprecedented speed and scale of attacks The report reveals that some cyberattacks break out within 51 seconds, with an average breach time of 48 minutes.

Threat Reports

Threat Reports Cybercrime Artificial Intelligence Social Engineering

CrowdStrike 2024 Global Threat Report: 6 Key Takeaways

Tech Republic Security

FEBRUARY 26, 2024

Identity-based and social engineering attacks still take center stage, according to the CrowdStrike 2024 Global Threat Report.

Threat Reports

Threat Reports Social Engineering Engineering Phishing

Streamlining detection engineering in security operation centers

SecureList

APRIL 16, 2025

Instead, they rely on the default severity in the rule, which is often set randomly or based on an engineer’s opinion without a clear process. Detection engineering program Before diving into the program-level approach, we will first present the detection engineering lifecycle that forms the foundation of the proposed program.

Engineering

Engineering Threat Detection Firewall Digital transformation

Threat Report Portugal: Q2 2022

Security Affairs

JULY 4, 2022

The Threat Report Portugal: Q2 2022 compiles data collected on the malicious campaigns that occurred from March to June, Q2, 2022. This makes it a reliable, trustworthy, continuously updated source, focused on the threats targeting Portuguese citizens. SecurityAffairs – hacking, Threat Report Portugal ).

Threat Reports

Threat Reports Phishing Banking Malware

Threat Report Portugal: Q4 2021

Security Affairs

FEBRUARY 20, 2022

The Threat Report Portugal: Q4 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q4, of 2021. This makes it a reliable and trustworthy and continuously updated source, focused on the threats targeting Portuguese citizens. SecurityAffairs – hacking, Threat Report Portugal ).

Threat Reports

Threat Reports Phishing Malware Banking

Threat Report Portugal: Q3 & Q4 2022

Security Affairs

APRIL 6, 2023

The Threat Report Portugal: H2 2022 compiles data collected on the malicious campaigns that occurred from July to December, H2, 2022. This makes it a reliable, trustworthy, continuously updated source, focused on the threats targeting Portuguese citizens. The submissions were classified as either phishing or malware.

Threat Reports

Threat Reports Phishing Malware Banking

Focus Threat Intel Capabilities at Detection Engineering (Part 4)

Anton on Security

OCTOBER 18, 2023

This blog series was written jointly with Amine Besson, Principal Cyber Engineer, Behemoth CyberDefence and one more anonymous collaborator. To start, in the Detection Engineering Maturity Matrix by Kyle Bailey, intel is referenced on the upper maturity level of the “Threat Operations” Category — and historically this has held true.

Engineering

Engineering Threat Detection Threat Reports Passwords

Honeywell Report OT Under Siege

SecureWorld News

JUNE 6, 2025

The Honeywell 2025 Cyber Threat Report delivers a sobering snapshot of today's industrial cybersecurity landscape: cyberattacks targeting operational technology (OT) environments are no longer rare or speculative—they're persistent, highly targeted, and increasingly sophisticated. OT defenders must plan for: Hybrid threats (e.g.,

Media

Media Social Engineering Malware Engineering

Scammers get sneaky: New malware distribution tactics revealed in Avast Threat Report

Security Boulevard

MAY 4, 2023

The first quarter of 2023 saw a notable rise in cyberattacks targeting trust in established tech brands Microsoft and Adobe, according to the Avast Q1 2023 Threat Report. The report also revealed a 40% increase in the share of phishing and smishing attacks from the previous year.

Threat Reports

Threat Reports Social Engineering Malware Phishing

Avast Threat Labs Q4 2022 Threat Report | Avast

Security Boulevard

FEBRUARY 9, 2023

The Avast Threat Labs Q4 2022 Threat Report observed a rise in social engineering attacks during the final quarter of 2022, including invoice and refund fraud, tech support scams, and others aimed at stealing money. The post Avast Threat Labs Q4 2022 Threat Report | Avast appeared first on Security Boulevard.

Threat Reports

Threat Reports Adware Social Engineering Scams

Thales 2023 Data Threat Report: The Increased Telco Cybersecurity Challenges in the 5G Era

Thales Cloud Protection & Licensing

SEPTEMBER 11, 2023

Thales 2023 Data Threat Report: The Increased Telco Cybersecurity Challenges in the 5G Era madhav Tue, 09/12/2023 - 05:15 Telecommunications firms have always faced a unique set of security challenges. IoT devices have a history of being the targets of botnet recruitment and engines for distributed denial of service (DDoS) attacks.

Threat Reports

Threat Reports IoT Telecommunications Cybersecurity

2020: The Year of Living Dangerously

SC Magazine

MARCH 17, 2021

Fortinet Lab’s Global Threat Landscape Report for the second half of 2020 reads more like a decade of attacks, not just a six-month period. The post 2020: The Year of Living Dangerously appeared first on SC Media.

Threat Reports

Threat Reports Media Engineering

From Data to Defense: Insights from ReliaQuest’s 2025 Annual Threat Report

Digital Shadows

FEBRUARY 24, 2025

Editors note: This report was authored by Kimberley Bromley, Hayden Evans, and Joseph Keyes. Today, were proud to present the ReliaQuest Annual Cyber-Threat Report: 2025. Now in its third year, this report offers a close look at the top cyber threats our customers faced throughout 2024.

Threat Reports

Threat Reports Cyber threats Phishing Social Engineering

Asia's Security Leaders Feel Underprepared for Future Threats: Report

Dark Reading

MARCH 12, 2018

A new study highlights major concerns of cybersecurity leaders in Asia, where most fear critical infrastructure attacks, advanced threats, and social engineering.

Threat Reports

Threat Reports Social Engineering Engineering Cybersecurity

New Report on Current and Emerging Cyber Threats to Healthcare

CyberSecurity Insiders

MARCH 25, 2023

Health-ISAC, a nonprofit, private sector, member-driven organization, has released its annual cyber threat report on current and emerging threat activity in the healthcare industry, in collaboration with Booz Allen Hamilton Cyber Threat Intelligence.

Cyber threats

Cyber threats Healthcare Social Engineering Threat Reports

Sophos finds new malware being distributed through email

CyberSecurity Insiders

NOVEMBER 11, 2021

The motive behind such socially engineered email attack is simple, to create fear among the victim and make him/her open an attachment filled with a malicious link leading to a malware download. Sophos, a cloud-native data security firm, has discovered in its research that a new malware is being distributed through threatening email.

Malware

Malware Social Engineering Threat Reports Engineering

Do You Trust Your Smart TV?

Security Affairs

AUGUST 2, 2021

According to the 2020 Insider Threat Report , contractors, service providers, and temporary workers pose the greatest risk to 50% of organizations. The cleaner’s insider access takes care of the physical access challenge, while detachment to the organization makes the individual more susceptible to social engineering.

Social Engineering

Social Engineering Healthcare Engineering Hacking

Phishing-Resistant MFA: Why FIDO is Essential

Thales Cloud Protection & Licensing

MAY 7, 2025

Todays threat actors use AI to craft compelling phishing campaigns and advanced social engineering tactics to slip past MFA, resulting in credential theft and account takeovers. Traditional Multi-Factor Authentication (MFA), while a step up from password-only security, is no longer enough to fight modern phishing schemes.

Phishing

Phishing Authentication Passwords Social Engineering

News Alert: IRONSCALES beta-launches a new generative AI tool to improve email security

The Last Watchdog

JUNE 21, 2023

June 20, 2023 – IRONSCALES, the leading enterprise cloud email security platform protecting more than 10,000 global organizations worldwide, today announced the Beta launch of Themis Co-pilot for Microsoft Outlook , a GPT-powered chat assistant for self-service threat reporting.

Phishing

Phishing Artificial Intelligence Social Engineering Data breaches

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

One of the exposed files — Glavmed.html — is a general invitation to the infamous Glavmed pharmacy affiliate program, a now-defunct scheme that paid tens of millions of dollars to affiliates who advertised online pill shops mainly by hacking websites and manipulating search engine results.

Malware

Malware Cybercrime Software Accountability

Identity-Based Attacks Increase, MFA-Thwarting Tactics Rise

Security Boulevard

NOVEMBER 23, 2022

Multifactor authentication (MFA) push notification fatigue attacks are increasing and are proving more effective, according to Expel’s quarterly threat report, based on data from the company’s customer base.

Authentication

Authentication Threat Reports Social Engineering Engineering

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

eSecurity Planet

MAY 1, 2025

RSA targets passwordless and help desk threats RSA unveiled a new enterprise-ready passwordless platform aimed at thwarting advanced identity attacks, especially those that attempt to bypass help desks using social engineering. Protection against deepfakes, fraud, outages, and AI-based impersonation.

Cybersecurity

Cybersecurity Mobile Phishing Artificial Intelligence

Your Data, Your Responsibility: Securing Your Organization's Future in the Cloud

Thales Cloud Protection & Licensing

MAY 19, 2025

The Complexity of Multi-Cloud Security The Thales 2025 Data Threat Report highlights that entities must rethink their approach to data security due to structural and geopolitical changes. The Thales DTR report echoes that sentiment; secrets management emerged as the top security challenge for DevSecOps engineers.

Encryption

Encryption Data breaches Risk Threat Reports

Security Affairs newsletter Round 313

Security Affairs

MAY 9, 2021

Cloud hosting provider Swiss Cloud suffered a ransomware attack Hacking a Tesla Model X with a DJI Mavic 2 drone equipped with a WIFI dongle WeSteal, a shameless commodity cryptocurrency stealer available for sale Experian API exposed credit scores of tens of millions of Americans Expert released PoC exploit for Microsoft Exchange flaw Most Common (..)

Data breaches

Data breaches DDOS Hacking VPN

Cryptocurrency Phishing Threats Luring New Victims

Security Boulevard

APRIL 14, 2023

Cryptocurrency-related phishing attacks are on the rise, with a report from Kaspersky recording an increase of 40% in 2022 compared to the previous year. The post Cryptocurrency Phishing Threats Luring New Victims appeared first on Security Boulevard.

Cryptocurrency

Cryptocurrency Phishing Threat Reports Social Engineering

Financial sector saw a 125% increase in mobile phishing attacks during 2020

SC Magazine

MAY 6, 2021

As part of the blog, Lookout also linked to its Financial Services Threat Report , which was authored by Schless. Some of the report’s highlights include the following: The motive of almost 50% of phishing attacks was to steal corporate login credentials.

Mobile

Mobile Phishing Banking Financial Services

Security Affairs newsletter Round 442 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 22, 2023

North Korea-linked APT groups actively exploit JetBrains TeamCity flaw Multiple APT groups exploited WinRAR flaw CVE-2023-38831 Californian IT company DNA Micro leaks private mobile phone data Threat actors have been exploiting CVE-2023-4966 in Citrix NetScaler ADC/Gateway devices since August A flaw in Synology DiskStation Manager allows admin account (..)

Ransomware

Ransomware Telecommunications Data breaches Mobile

Sophisticated Attacks Against Mobile Devices Surge 187%

SecureWorld News

JUNE 29, 2023

Cybersecurity firm Zimperium recently released its 2023 Global Mobile Threat Report 2023 , revealing a concerning increase in sophisticated attacks targeting mobile devices. The report sheds light on the escalating threat landscape faced by mobile-powered businesses.

Mobile

Mobile IoT Social Engineering Phishing

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

Phishing and Fraud Bad actors can defraud customers out of their money, financial details, and other sensitive data by using deception and social engineering. Top Risks for Retailers (and their Customers) Understanding the most common cyber risks is the first and most essential step for retailers to protect their businesses and customers.

Retail

Retail Cyber Risk Risk DDOS

Data Privacy and Security: It Takes Two to Tango

Thales Cloud Protection & Licensing

JANUARY 24, 2022

This trend is demonstrated in the latest Thales Data Threat Report 2021 ; 55% of the survey respondents reported that more than 40% of their data now resides in a cloud platform. However, with technology innovation comes new risks, security challenges and threats.

Data privacy

Data privacy Data breaches Social Engineering Technology

Your Data, Your Responsibility: Securing Your Organization’s Future in the Cloud

Security Boulevard

MAY 19, 2025

The Complexity of Multi-Cloud Security The Thales 2025 Data Threat Report highlights that entities must rethink their approach to data security due to structural and geopolitical changes. The Thales DTR report echoes that sentiment; secrets management emerged as the top security challenge for DevSecOps engineers.

Encryption

Encryption Data breaches Risk Threat Reports

Identity at a Crossroads: Why Existential Identity Matters

Thales Cloud Protection & Licensing

APRIL 7, 2025

AI-powered social engineering makes scams more convincing, while stolen passwords enable criminals to log into corporate networks and move laterally unnoticed. Deepfakes create hyper-realistic fake videos or voices that fool people, and identity theft helps attackers pretend to be someone else to steal data.

Authentication

Authentication Identity Theft Digital transformation Passwords

New Linux Malware Shikitega Can Take Full Control of Devices

eSecurity Planet

SEPTEMBER 15, 2022

Employees should be trained against various social engineering and phishing attacks, as it’s a classic vector used by cybercriminals to deploy malware. AT&T labs provided a list of IoCs (indicators of compromise) that system administrators can use to add specific rules to security solutions.

Malware

Malware Social Engineering System Administration Antivirus

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Webroot

JANUARY 7, 2022

Threats abound in 2021. In 2021, we witnessed so many competing shifts, many of which we detailed early on in our 2021 BrightCloud® Threat Report. In our mid-year BrightCloud® Threat report , we found a 440% increase in phishing, holding the record for the single largest phishing spike in one month alone.

Cybercrime

Cybercrime Ransomware Phishing Cryptocurrency

Top 5 Insider Threats to Look Out For in 2023

Security Affairs

MARCH 17, 2023

According to statistics on insider threats, these threats may originate from employees, business contractors, or other reliable partners with simple access to your network. However, insider threat reports and recent developments have shown a sharp rise in the frequency of insider attacks.

Social Engineering

Social Engineering Risk Technology Engineering

Thales CipherTrust Data Security Platform Support for Intel TDX Confidential VMs on Microsoft Azure Thales, Intel, and Microsoft Azure Deliver End-to-End Data Protection

Thales Cloud Protection & Licensing

NOVEMBER 14, 2023

Nearly half (47%) of the respondents of the 2023 Thales Data Threat Report reported that cyberattacks are increasing in volume and severity. Meanwhile, organizations continue to invest in digital transformation by utilizing the efficiencies and elasticity offered by cloud service providers.

Architecture

Architecture Digital transformation Engineering Authentication

2022 Security Challenges and 2023 Security Predictions

CyberSecurity Insiders

NOVEMBER 29, 2022

According to the SonicWall Cyber Threat Report, the global volume of ransomware is increasing by 98%. Ransomware, as projected would continue to be a leading way for bad actors to leverage control and data to monetize hacking organizations. Phishing Targeted Attacks.

Phishing

Phishing Mobile Technology Ransomware

Embracing Automation in Cyber Threat Intelligence: The Key to Timely Protection

SecureWorld News

SEPTEMBER 27, 2023

Threat Intelligence (TI) representation across different levels There is a lot of information on cyberattacks on the internet, and, as a rule, the most helpful information is contained in cyber threat reports ( Threat Intelligence Reports ).

Cyber threats

Cyber threats Artificial Intelligence Malware Threat Reports

Hacker Personas Explained: Know Your Enemy and Protect Your Business

Webroot

FEBRUARY 11, 2021

As we mentioned in a previous blog , hackers come in many forms, but their methods can generally be classified into three distinct types of cybercriminals: The Impersonator – Hackers that pretend to be others, often using social engineering and human psychology to trick users.

Scams

Scams Phishing Firewall Social Engineering

Ransomware Threats Affecting the Public Sector

McAfee

NOVEMBER 18, 2021

In the October 2021 Threat Report , McAfee Enterprise ATR provides a global view of the top threats, especially those ransomware attacks that affected most countries and sectors in Q2 2021, especially in the Public Sector (Government). Cloud Threats Affecting the Public Sector. Threat Assessments. IOC enrichment.

Ransomware

Ransomware Government Threat Reports Architecture

Keep your encryption keys to increase control of data you store and process in the cloud

Thales Cloud Protection & Licensing

DECEMBER 7, 2020

According to the 2020 Thales Data Threat Report-Global Edition : Nearly all (98%) of organizations surveyed have some data in the cloud. Keep your encryption keys to increase control of data you store and process in the cloud. Mon, 12/07/2020 - 08:33. Half of all data is in the cloud. Integrating with CipherTrust Key Broker.

Encryption

Encryption Engineering Threat Reports Risk

The Prevalence of DarkComet in Dynamic DNS

Security Boulevard

AUGUST 6, 2024

Threat Intelligence Report Date: August 6, 2024 Prepared by: David Brunsdon, Threat Intelligence - Security Engineer, HYAS Dynamic DNS (DDNS) is a service that automatically updates the Domain Name System (DNS) in real-time to reflect changes in the IP addresses of a domain. Want more threat intel on a weekly basis?

DNS

DNS Malware Social Engineering Software

The Ongoing Cyber Threat to Critical Infrastructure

Thales Cloud Protection & Licensing

JULY 21, 2022

With that in mind, Thales has launched the 2022 Thales Data Threat Report Critical Infrastructure Edition, which includes responses from 300 security leaders and practitioners within critical infrastructure organizations. Download the full Thales 2022 Data Threat Report for the Critical Infrastructure for more information.

Cyber threats

Cyber threats Energy and Utilities Ransomware IoT

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

eSecurity Planet

MAY 1, 2025

RSA targets passwordless and help desk threats RSA unveiled a new enterprise-ready passwordless platform aimed at thwarting advanced identity attacks, especially those that attempt to bypass help desks using social engineering. Protection against deepfakes, fraud, outages, and AI-based impersonation.

Cybersecurity

Cybersecurity Mobile Phishing Artificial Intelligence

CrowdStrike 2025 Global Threat Report: 51-Second Breaches Shake Cybercrime

CrowdStrike 2024 Global Threat Report: 6 Key Takeaways

Trending Sources

Streamlining detection engineering in security operation centers

Threat Report Portugal: Q2 2022

Threat Report Portugal: Q4 2021

Threat Report Portugal: Q3 & Q4 2022

Focus Threat Intel Capabilities at Detection Engineering (Part 4)

Honeywell Report OT Under Siege

Scammers get sneaky: New malware distribution tactics revealed in Avast Threat Report

Avast Threat Labs Q4 2022 Threat Report | Avast

Thales 2023 Data Threat Report: The Increased Telco Cybersecurity Challenges in the 5G Era

2020: The Year of Living Dangerously

From Data to Defense: Insights from ReliaQuest’s 2025 Annual Threat Report

Asia's Security Leaders Feel Underprepared for Future Threats: Report

New Report on Current and Emerging Cyber Threats to Healthcare

Sophos finds new malware being distributed through email

Do You Trust Your Smart TV?

Phishing-Resistant MFA: Why FIDO is Essential

News Alert: IRONSCALES beta-launches a new generative AI tool to improve email security

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Identity-Based Attacks Increase, MFA-Thwarting Tactics Rise

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

Your Data, Your Responsibility: Securing Your Organization's Future in the Cloud

Security Affairs newsletter Round 313

Cryptocurrency Phishing Threats Luring New Victims

Financial sector saw a 125% increase in mobile phishing attacks during 2020

Security Affairs newsletter Round 442 by Pierluigi Paganini – INTERNATIONAL EDITION

Sophisticated Attacks Against Mobile Devices Surge 187%

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Data Privacy and Security: It Takes Two to Tango

Your Data, Your Responsibility: Securing Your Organization’s Future in the Cloud

Identity at a Crossroads: Why Existential Identity Matters

New Linux Malware Shikitega Can Take Full Control of Devices

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Top 5 Insider Threats to Look Out For in 2023

Thales CipherTrust Data Security Platform Support for Intel TDX Confidential VMs on Microsoft Azure Thales, Intel, and Microsoft Azure Deliver End-to-End Data Protection

2022 Security Challenges and 2023 Security Predictions

Embracing Automation in Cyber Threat Intelligence: The Key to Timely Protection

Hacker Personas Explained: Know Your Enemy and Protect Your Business

Ransomware Threats Affecting the Public Sector

Keep your encryption keys to increase control of data you store and process in the cloud

The Prevalence of DarkComet in Dynamic DNS

The Ongoing Cyber Threat to Critical Infrastructure

RSA Conference 2025: Top Announcements and Key Takeaways from the Cybersecurity World’s Biggest Stage

Stay Connected