The Last Watchdog

DECEMBER 18, 2024

CISA updated its Secure by Design guidance, and the EUs Cyber Resilience Act and NIS2 added new requirements. Proactive collaboration and cyber risk quantification are key to ensuring operational resilience and security. Overemphasizing compliance risks diverting resources from advanced security challenges.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

Malwarebytes

NOVEMBER 12, 2024

Words of warning The UK regulator, the Information Commissioner’s Office (ICO) has confirmed it has received a complaint about Atlas Biomed, saying in a statement: “People have the right to expect that organizations will handle their personal information securely and responsibly.”

Insurance 145

Insurance Accountability Risk Data breaches 145

eSecurity Planet

OCTOBER 18, 2024

Chief Information Security Officer (CISO) As Chief Information Security Officer, you’ve arrived at the C-Suite. There are only about 7,500 CISOs in the United States, compared to 70,000 chief information officers (CIOs), according to CISO Global. Salary: $124,424, Cyberseek.

Cybersecurity 125

Cybersecurity Artificial Intelligence Penetration Testing CISO 125

SecureWorld News

MARCH 13, 2025

Hardening endpoints to increase the cost of attack Trey Ford, Chief Information Security Officer at Bugcrowd, takes a pragmatic approach to AI-driven cyber threats. Criminals are going to criminaland they're going to use every tool and technique available to them," he said.

Malware 111

Malware Cybersecurity Cyber threats Threat Detection 111

The Last Watchdog

MAY 13, 2025

Related: How real people are really using GenAI Todays Chief Information Security Officers (CISOs) operate in a pressure cooker: responsible for protecting critical assets, expected to show up in the boardroom with fluency, yet rarely granted the authority, resources or organizational alignment to succeed.

CISO 130

CISO Risk Cybersecurity Government 130

SecureWorld News

MAY 12, 2025

It mandates that deployers of high-risk AI systems that process personal information to develop, implement, and maintain a comprehensive information security program that contains specific administrative, technical, and physical safeguards.

Retail 85

Retail Advertising Manufacturing Artificial Intelligence 85

Security Affairs

MAY 6, 2025

A new BYOI technique lets attackers bypass SentinelOne EDR, disable protection, and deploy Babuk ransomware by exploiting the agent upgrade process.

Ransomware 140

Ransomware Hacking Information Security 140

Security Affairs

APRIL 26, 2025

Veritaco CEO Jeffrey Bowie faces charges for allegedly installing malware on hospital computers, violating Oklahoma’s Computer Crimes Act. Jeffrey Bowie, CEO of the cybersecurity firm Veritaco, is facing two counts of violating Oklahoma’s Computer Crimes Act for allegedly infecting employee computers at the Oklahoma City St.

Malware 145

Malware Cybersecurity Healthcare Media 145

Security Affairs

DECEMBER 5, 2024

Security Operations Center (SOC) analyst burnout is a very real problem. SOC analysts, vital to cybersecurity, face burnout due to exhausting workloads, risking their well-being and the effectiveness of organizational defenses.

Artificial Intelligence 138

Artificial Intelligence Data collection Cybersecurity Risk 138

Security Affairs

APRIL 22, 2025

“There has been a sharp increase in the number of cases of unauthorized access and unauthorized trading (trading by third parties) on Internet trading services using stolen customer information (login IDs, passwords, etc.) from fake websites (phishing sites) disguised as websites of real securities companies.”

Financial Services 123

Financial Services Passwords Accountability Antivirus 123

Security Affairs

APRIL 7, 2025

Cybercriminals exploit compromised accounts for EDR-as-a-Service (Emergency Data Requests – EDR), targeting major platforms According to a detailed analysis conducted by Meridian Group, an increasingly complex and structured phenomenon, commonly referred to as EDR-as-a-Service, is taking hold in the cybersecurity landscape.

Cybercrime 140

Cybercrime Social Engineering Accountability Government 140

Security Affairs

OCTOBER 12, 2024

cyber agencies warn that Russia-linked group APT29 is targeting vulnerable Zimbra and JetBrains TeamCity servers on a large scale. cyber agencies warned.

Data collection 139

Data collection Authentication Hacking Government 139

Security Affairs

NOVEMBER 3, 2024

Quad7 botnet, also known as CovertNetwork-1658 or xlogin, was first spotted in the summer of 2023 by security researcher Gi7w0rm. Microsoft warns Chinese threat actors are using the Quad7 botnet to carry out password-spray attacks and steal credentials.

Passwords 136

Passwords Wireless VPN Accountability 136

Security Affairs

NOVEMBER 26, 2024

Banshee Stealer, a MacOS Malware-as-a-Service, shut down after its source code leaked online. The code is now available on GitHub. In August 2024, Russian hackers promoted BANSHEE Stealer, a macOS malware targeting x86_64 and ARM64, capable of stealing browser data, crypto wallets, and more.

Malware 144

Malware Cryptocurrency Encryption Passwords 144

Security Affairs

NOVEMBER 1, 2024

New LightSpy spyware targets iPhones supporting destructive features that can block compromised devices from booting up. In May 2024, ThreatFabric researchers discovered a macOS version of LightSpy spyware that has been active in the wild since at least January 2024.

Spyware 143

Spyware Media Malware Hacking 143

Security Affairs

OCTOBER 21, 2024

Cisco confirms that data published by IntelBroker on a cybercrime forum was taken from the company DevHub environment. Cisco confirms that the data posted by IntelBroker on a cybercrime forum was stolen from its DevHub environment.

Cybercrime 134

Cybercrime Data breaches Technology Banking 134

Security Affairs

OCTOBER 20, 2024

Technology firm F5 patches a high-severity elevation of privilege vulnerability in BIG-IP and a medium-severity flaw in BIG-IQ. F5 addressed two vulnerabilities in BIG-IP and BIG-IQ enterprise products, respectively tracked as CVE-2024-45844 and CVE-2024-47139.

Authentication 139

Authentication Hacking Technology Information Security 139

Security Affairs

JANUARY 16, 2025

Researchers discovered a 13,000-device MikroTik botnet exploiting DNS flaws to spoof 20,000 domains and deliver malware. Infoblox researchers discovered a botnet of 13,000 MikroTik devices that exploits DNS misconfigurations to bypass email protections, spoof approximately 20,000 domains, and deliver malware. zip” or “Tracking###.zip”

DNS 139

DNS Malware Firmware Authentication 139

Security Affairs

OCTOBER 22, 2024

Google’s Threat Analysis Group (TAG) researchers warn of a Samsung zero-day vulnerability that is exploited in the wild. Google’s Threat Analysis Group (TAG) warns of a Samsung zero-day vulnerability, tracked as CVE-2024-44068 (CVSS score of 8.1), which is exploited in the wild.

Firmware 145

Firmware Mobile Spyware Media 145

Security Affairs

NOVEMBER 24, 2024

seized the stolen credit card marketplace PopeyeTools and charged its operators, this is a major success against cybercrime.

Cybercrime 133

Cybercrime Cryptocurrency Banking Accountability 133

Security Affairs

OCTOBER 10, 2024

Jscrambler researchers found a skimming campaign using unique JavaScript obfuscation with accented characters to hide a skimmer named Mongolian Skimmer. Jscrambler researchers uncovered a skimming campaign using unique JavaScript obfuscation with accented characters to hide a skimmer dubbed ‘Mongolian Skimmer.’

Data collection 130

Data collection Engineering Malware Hacking 130

Security Affairs

APRIL 16, 2025

funded CVE program, a core cybersecurity tool for tracking vulnerabilities, faces funding expiry Wednesday, risking disruption to global security. The 25-year-old program has assigned over 274,000 CVE IDs for public security vulnerabilities. MITREs U.S.-funded

Government 134

Government Risk Cybersecurity Media 134

Security Affairs

OCTOBER 22, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the ScienceLogic SL1 flaw CVE-2024-9537 (CVSS v4 score: 9.3) to its Known Exploited Vulnerabilities (KEV) catalog.

Encryption 126

Encryption Hacking Accountability Cybersecurity 126

Security Affairs

MARCH 8, 2025

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. Cybersecurity researchers at S-RM team discovered a novel attack technique used by the Akira ransomware gang.

Ransomware 133

Ransomware IoT Encryption Passwords 133

Security Affairs

APRIL 16, 2025

Cheap Chinese Android phones ship with trojanized WhatsApp and Telegram clones hiding crypto clippers, active since June 2024. Since June 2024, Doctor Web researchers found cheap Android phones preloaded with fake WhatsApp and Telegram apps designed to steal crypto via clipping. These clippers swap copied wallet addresses with the attackers own.

Malware 131

Malware Manufacturing Mobile Spyware 131

Security Affairs

OCTOBER 11, 2024

OpenAI disrupted 20 cyber and influence operations in 2023, revealing Iran and China-linked actors used ChatGPT for planning ICS attacks. OpenAI announced the disruption of over 20 cyber and influence operations this year, involving Iranian and Chinese state-sponsored hackers.

Malware 139

Malware Social Engineering Engineering Hacking 139

Security Affairs

JANUARY 15, 2025

A previously unknown threat actor released config files and VPN passwords for Fortinet FortiGate devices on a popular cybercrime forum. A previously unknown threat actor named Belsen Group published configuration files and VPN passwords for over 15,000 Fortinet FortiGate appliances. “2025 will be a fortunate year for the world.

VPN 133

VPN Passwords Firewall Firmware 133

Security Affairs

MARCH 21, 2025

Russian zero-day broker Operation Zero is looking for exploits for the popular messaging app Telegram, offering up to $4 million for them. Operation Zero, a Russian zero-day broker, is offering up to $4 million for Telegram exploits, the news was first reported by Tech Crunch. The Russian firm seeks up to $500K for one-click RCE, $1.5M

Government 144

Government Surveillance Mobile Hacking 144

Security Affairs

MAY 5, 2025

MintsLoader is a malware loader delivering the GhostWeaver RAT via a multi-stage chain using obfuscated JavaScript and PowerShell. Recorded Future researchers observed MintsLoader delivering payloads like GhostWeaver via obfuscated scripts, evading detection with sandbox/VM checks, and uses DGA and HTTP C2.

Malware 129

Malware Phishing Threat Reports Encryption 129

Security Affairs

NOVEMBER 6, 2024

Taiwanese vendor Synology has addressed a critical security vulnerability, tracked as CVE-2024-10443, that impacts DiskStation and BeePhotos. Synology addressed a critical vulnerability in DiskStation and BeePhotos NAS devices that could lead to remote code execution.

Firmware 127

Firmware Manufacturing Hacking Media 127

Security Affairs

NOVEMBER 2, 2024

Hackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to exploit two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957 , in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras, GretNoise researchers warn.

Firmware 125

Firmware Manufacturing IoT Healthcare 125

Security Affairs

DECEMBER 4, 2024

BT Group (formerly British Telecom)’s Conferencing division shut down some of its servers following a Black Basta ransomware attack. British multinational telecommunications holding company BT Group (formerly British Telecom) announced it has shut down some of its servers following a Black Basta ransomware attack.

Ransomware 129

Ransomware Telecommunications Healthcare Insurance 129

Security Affairs

NOVEMBER 11, 2024

Amazon disclosed a data breach exposing employee data, with information allegedly stolen in the May 2023 MOVEit attacks. Amazon disclosed a data breach that exposed employee information after data was allegedly stolen during the May 2023 MOVEit attacks. The company said that the data was stolen from a third-party vendor.

Data breaches 129

Data breaches Hacking Ransomware Technology 129

Security Affairs

APRIL 23, 2025

Ripple cryptocurrency library was compromised in a supply chain attack aimed at stealing users’ private keys. Threat actors compromised the Ripple cryptocurrency npm JavaScript library xrpl.js to harvest users’ private keys.

Cryptocurrency 111

Cryptocurrency Malware Hacking Risk 111

Security Affairs

OCTOBER 19, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds Veeam Backup and Replication vulnerability to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the Veeam Backup and Replication flaw CVE-2024-40711 (CVSS score of 9.8)

Backups 133

Backups VPN Ransomware Authentication 133

Security Affairs

FEBRUARY 22, 2025

Crypto exchange Bybitwas the victim of a sophisticated attack, and threat actors stole $1.5B worth of cryptocurrency from one of the companys offline wallets. Crypto exchange Bybit suffered a sophisticated cyberattack, threat actors transferred over 400,000 ETH and stETH worth more than $1.5 billion to an unidentified address.

Cryptocurrency 133

Cryptocurrency Hacking Banking Cybersecurity 133

Security Affairs

OCTOBER 28, 2024

Italian police arrested four and are investigating dozens, including Leonardo Maria Del Vecchio, for alleged unauthorized access to state databases. Italian authorities have arrested four individuals as part of an investigation into alleged illegal access to state databases.

Computers and Electronics 138

Computers and Electronics Banking Marketing Hacking 138