Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. government neutralized the Volt Typhoon botnet taking over its C2 and deleting the bot from infected devices.

VPN

eSecurity Planet

APRIL 3, 2025

This platform will allow European manufacturers to securely report cyber vulnerabilities, helping governments and businesses respond quickly to threats before they become full-blown attacks. Another significant effort is developing a Cyber Resilience Act single reporting platform. The post EU Pumps 1.3

Cybersecurity

The Last Watchdog

FEBRUARY 10, 2025

I had an edifying conversation about this with Steve Hanna , distinguished engineer at Infineon Technologies , a global semiconductor leader in power systems and IoT, based in Neubiberg, Germany. Not coincidentally, industry standards groups and government regulators have stepped forward to embrace a vital supporting role.

Internet

Centraleyes

DECEMBER 16, 2024

As we approach 2025, the cybersecurity landscape is evolving rapidly, shaped by technological advancements, regulatory shifts, and emerging threats. By 2027, 75% of employees are expected to acquire or modify technology outside of ITs control, up from 41% in 2022. To keep up, organizations must stay ahead of these developments.

Cybersecurity

Hacker's King

DECEMBER 24, 2024

As the digital landscape evolves, cybersecurity remains a critical concern for businesses, governments, and individuals alike. With the advent of new technologies and rising cyber threats , 2025 promises significant shifts in the cybersecurity domain. Enhanced Focus on Data Privacy Data breaches have shown no signs of slowing down.

Cybersecurity

Security Affairs

APRIL 5, 2025

The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors. The Rhysida ransomware group has been active since May 2023. The victims of the group are targets of opportunity.

Data breaches

SecureWorld News

JANUARY 16, 2025

With the increasing reliance on digital technologies for operational efficiency, this sector has become a prime target for sophisticated cyber and physical threats. Leverage data analysis: Data analytics and IoT technologies are revolutionizing the oil and gas sector, enabling better monitoring and threat detection.

Energy and Utilities

Security Affairs

JANUARY 10, 2025

The campaign has been active since at least 2019, it targets Japanese technology and national security, evolving methods to steal advanced tech and intelligence. Between 2019 and 2024, the MirrorFace group launched three cyber campaigns targeting Japanese think tanks, government, academia, and key industries.

Antivirus

Thales Cloud Protection & Licensing

AUGUST 11, 2025

The threat landscape presents a serious and persistent challenge for governments, businesses, critical infrastructure, and individuals alike. The Thales Digital Trust Index found 64% of consumers said their brand confidence would significantly increase if innovative, advanced technologies were being used to protect sensitive data.

Risk

SecureWorld News

APRIL 23, 2025

The Secure by Design initiative: a brief overview Launched in April 2023, Secure by Design aimed to shift the responsibility for cybersecurity upstream by encouraging software manufacturers to integrate security measures during the design phase.

Manufacturing

SecureList

NOVEMBER 29, 2024

Mobile statistics Targeted attacks New APT threat actor targets Russian government entities In May 2024, we discovered a new APT targeting Russian government organizations. Two months later, in July 2024, CloudSorcerer launched further attacks against Russian government organizations and IT companies.

Energy and Utilities

SecureWorld News

AUGUST 11, 2025

Servers, domains, and digital assets seized Since 2022, Royal and BlackSuit ransomware groups have compromised more than 450 known victims in the United States, targeting sectors such as healthcare, education, public safety, energy, and government. These attacks have brought in more than $370 million in cryptocurrency at current prices.

Ransomware

Security Boulevard

FEBRUARY 14, 2025

government is urging software makers to adopt secure application-development practices that help prevent buffer overflow attacks. So how can governments more effectively tackle national-security cyberthreats from profit-seeking cybercriminals? And get the latest on ransomware trends and on cybercrime legislation and prevention!

Banking

Security Boulevard

MARCH 21, 2025

Migration to PQC can be viewed as any large technology transition. National Institute of Standards and Technology (NIST) last year released three quantum-resistant algorithm standards that are ready to be adopted. Thats the opinion of Consumer Reports, the Center for Democracy and Technology, the U.S.

Risk

Security Boulevard

AUGUST 11, 2025

The threat landscape presents a serious and persistent challenge for governments, businesses, critical infrastructure, and individuals alike. The Thales Digital Trust Index found 64% of consumers said their brand confidence would significantly increase if innovative, advanced technologies were being used to protect sensitive data.

Risk

Security Affairs

JUNE 30, 2025

Canada bans Hikvision over national security concerns, ordering the company to stop operations and barring its tech from government use. Canada bans Hikvision products for government use, reviewing existing properties. The government has determined that Hikvision Canada Inc.’s ” My statement on Hikvision Canada Inc.

Surveillance

IT Security Guru

MARCH 26, 2025

Until the last ten years or so, we would largely categorise robots as reactive with mostly industrial applications in areas like manufacturing or warehousing. world, represent perhaps the most disruptive technology to transform IT, our industries and how businesses operate.

Cybersecurity

SecureList

APRIL 23, 2025

The campaign, dubbed “Operation SyncHole”, has impacted at least six organizations in South Korea’s software, IT, financial, semiconductor manufacturing, and telecommunications industries, and we are confident that many more companies have actually been compromised.

Malware

SecureWorld News

JULY 22, 2025

Adding to the urgency is the "convergence of advances in robotics, sensors, materials, artificial intelligence, propulsion and energy systems, and autonomous systems," which has drastically increased the capabilities and reduced the cost of advanced drone technologies for both legitimate and nefarious purposes. Dedicated Vessels: The U.K.,

Surveillance

SecureList

DECEMBER 9, 2024

This information was disseminated, making the vulnerable systems high-visibility targets for threat actors, especially as Fortinet products are commonly found in government, healthcare, and other critical sectors. As our reliance on satellite-based technologies increases, these systems are becoming attractive targets for threat actors.

Internet

Digital Shadows

MARCH 17, 2025

The ransomware targets unpatched internet-facing servers, impacting systems across 70+ countries in sectors like critical infrastructure, health care, governments, education, technology, manufacturing, and small- to medium-sized businesses.

VPN

SecureWorld News

APRIL 30, 2025

Stakeholder collaboration: The Act emphasizes collaboration with private sector entities, including farmers, processors, manufacturers, and retailers to enhance the sector's resilience against cyber threats. Strategic Advisor & vCISO, Sentinel Technologies. 1604): Introduced by Rep. Finstad said in a press release.

Cybersecurity

Security Boulevard

MAY 2, 2025

1 - How to choose cyber secure OT products If your organization is shopping around for operational technology (OT) products, CISA published a guide in January 2025 aimed at helping OT operators choose OT products designed with strong cybersecurity features. published the guide Secure-by-Design: Choosing Secure and Verifiable Technologies.

Cybersecurity

SecureWorld News

JULY 10, 2025

Manufacturing and logistics firms, increasingly digitized and AI-driven, are acutely at risk: state-aligned hackers are "infiltrating the digital arteries of commerce" from ports to payment systems. Nation-state actors have experimented with implanting backdoors on hardware components during manufacturing—a nightmare scenario for detection.

Manufacturing

SecureWorld News

MAY 12, 2025

This provision mirrors the Agency's prior settlement with a major auto manufacturer, wherein it emphasized that contracting out privacy rights to a third-party consent management tool, without monitoring and oversight of that tool, is not a defense to liability.

Retail

Penetration Testing

JUNE 9, 2025

ShadowPad, a privately sold modular malware platform, was used in a global campaign spanning June 2024 to March 2025, compromising victims in manufacturing, government, finance, telecom, and research. The cluster included a notable intrusion into a South Asian government IT provider.

Penetration Testing

Security Boulevard

JULY 18, 2025

All Your UAVs Are Belong to UKR: Ukrainian Cyber Alliance and Black Owl team up to hack manufacturer of Russian military drones, sources say. The post Ukraine Pwns Russian Drone Maker — Gaskar is ‘Paralyzed’ appeared first on Security Boulevard.

Manufacturing

SecureList

MAY 28, 2025

This included the contact list, the list of installed applications, and various device identifiers, such as the manufacturer, model, and fingerprint. Upon startup, the malware would collect key information from the infected device.

Banking

Centraleyes

AUGUST 7, 2025

It establishes certification expectations based on the type of federal data a contractor handles and outlines the assessment paths (self-assessment, third-party review, or government-led audit) that must be followed. Which CMMC Level Applies to You? Not all DoD contractors need to meet the same CMMC level. While CMMC 2.0

Passwords

Jane Frankland

JANUARY 12, 2025

Cybersecurity is on the brink of significant transformation as we approach 2025, grappling with escalating complexities driven by advancements in technology, increasing geopolitical tensions, and the rapid adoption of AI and IoT. Ethics The ethical challenges posed by advancing AI technologies will demand urgent attention in 2025.

Cybersecurity

GlobalSign

JULY 25, 2025

Technology Alliances Complimentary or PKI-integrated strategic relationships with industry leading technology vendors. Moreover, with dramatic technological leaps being adopted by businesses, the sophistication of data threats has risen proportionately. Certificates Trusted digital certificates to support any and every use case.

Risk

Malwarebytes

JANUARY 8, 2025

The cybersecurity labeling program for wireless consumer Internet of Things (IoT) products is voluntary but the participants include several major manufacturers, retailers, and trade associations for popular electronics, appliances, and consumer products. For now, the program does not apply to personal computers, smartphones, and routers.

Computers and Electronics

SecureList

JULY 25, 2025

Entities across multiple sectors were affected: government, finance, manufacturing, forestry, and agriculture. Our statistics show that widespread exploitation started on July 18, 2025, and attackers targeted servers across the world in Egypt, Jordan, Russia, Vietnam, and Zambia.

Authentication

Security Boulevard

MARCH 20, 2025

enterprises embrace AI to boost productivity, accelerate decision-making, and automate workflows, to name a few benefits, cybercriminals are using the same technology to automate and scale more sophisticated attacks. Figure 1: Top AI applications by transaction volume Enterprises blocked a large proportion of AI transactions: 59.9%

Social Engineering

Thales Cloud Protection & Licensing

MARCH 12, 2025

The FIDO (Fast Identity Online) standard has emerged as the gold standard in authentication technology, providing a robust framework for secure and convenient access. The company oversees the entire manufacturing cycle, from design to production to delivery. Thales takes security a step further with its controlled operations.

Passwords

Centraleyes

MARCH 24, 2025

The act applies to both manufacturers and suppliers of software and hardware products sold within the EU. It establishes common cybersecurity rules for manufacturers and developers of products with digital elements, and it covers both hardware and software. The Cyber Resilience Act is the first EU-wide legislation of its kind.

Manufacturing

The Last Watchdog

NOVEMBER 10, 2024

I had the chance to discuss this at length with Thomas Rosteck , Division President of Connected Secure Systems (CSS) at Infineon Technologies. It requires technical innovation to mesh with supporting security standards and emerging government regulations much quicker and smoother than has ever happened in the Internet era.

IoT