Hacker's King

DECEMBER 24, 2024

AI-powered malware and phishing schemes can adapt to defenses in real time, making them harder to detect and counter. Expansion of Cyber Insurance As cyberattacks grow in frequency and scale, the demand for cyber insurance will surge. Organizations must invest in advanced AI-based security tools to stay ahead.

Cybersecurity 59

Cybersecurity Cyber Insurance IoT Insurance 59

Malwarebytes

OCTOBER 25, 2024

The Office for Civil Rights (OCR) at the HHS confirmed that it prioritized and opened investigations of Change Healthcare and UnitedHealth Group, focused on whether a breach of protected health information (PHI) occurred and on the entities’ compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Rules.

Healthcare 115

Healthcare Data breaches Identity Theft Passwords 115

Malwarebytes

MARCH 19, 2025

Social Security Numbers (SSN) Health insurance information CCB is posting lettersalong the lines of this California example to everyone who may be impacted. Some forms of two-factor authentication (2FA) can be phished just as easily as a password. 2FA that relies on a FIDO2 device cant be phished. Watch out for fake vendors.

Banking 92

Banking Data breaches Computers and Electronics Insurance 92

SecureWorld News

FEBRUARY 26, 2025

Crypto companies must now adopt advanced cybersecurity measures to ward off sophisticated threats such as malware and phishing attacks, and there's likely to be an increased focus on developing comprehensive insurance and risk management strategies to mitigate potential financial losses."

Hacking 95

Hacking Cryptocurrency Cyber threats Malware 95

Malwarebytes

MARCH 25, 2025

That has worried some experts who have pointed out that a new owner could, for instance, hand over customer data to insurance companies to hike up monthly premiums, or to data brokers to power increasingly invasive, targeted advertising. Some forms of two-factor authentication (2FA) can be phished just as easily as a password.

Passwords 111

Passwords Data breaches Accountability Phishing 111

SecureWorld News

APRIL 23, 2025

As the report starkly states: "The three primary ways in which attackers access an organization are stolen credentials, phishing and exploitation of vulnerabilitiesacross every single industry." Phishing accounted for nearly 25% of all breaches. If those controls are not effective, cyber insurance underwriters might have to pay out.

CISO 102

CISO Backups Ransomware Risk 102

Malwarebytes

JANUARY 10, 2025

Some forms of two-factor authentication (2FA) can be phished just as easily as a password. 2FA that relies on a FIDO2 device cant be phished. Phishing attacks often impersonate people or brands you know, and use themes that require urgent attention, such as missed deliveries, account suspensions, and security alerts.

Ransomware 96

Ransomware Data breaches Passwords Phishing 96

SecureWorld News

JULY 8, 2025

This shift was supercharged by cryptocurrency, encrypted communication platforms, and the global reach of phishing. These affiliates are then responsible for distributing the malware, typically via phishing campaigns, exploit kits, or malicious ads. It starts with awareness. The sheer decentralization of RaaS makes it resilient.

Ransomware 65

Ransomware Cybercrime Phishing Cryptocurrency 65

eSecurity Planet

MARCH 17, 2025

Since its emergence in 2021, Medusa has targeted over 300 victims across various critical infrastructure sectors, including medical, education, legal, insurance, technology, and manufacturing. What is Medusa ransomware?

Ransomware 68

Ransomware Backups Firmware Insurance 68

Jane Frankland

JUNE 24, 2025

Develop Cyber Knowledge, Skills, and Literacy at All Levels Many organisations invest in security awareness training and phishing simulations for staff, but overlook their leadership teams. If they do include any reference to people, it’s typically in terms of security awareness and phishing training.

Cyber Risk 100

Cyber Risk Security Awareness Risk Government 100

Malwarebytes

FEBRUARY 4, 2025

Generative AI tools can more convincingly write phishing emails so that the tell-tale signs of a scamlike misspellings and clumsy grammarare all but gone. Cybercrime is a very mature field that relies on a set of well-established tools, such as phishing, information stealers, and ransomware that are already feature complete.

Artificial Intelligence 143

Artificial Intelligence Small Business Malware Technology 143

Webroot

MARCH 3, 2025

The event is sponsored by the Federal Trade Commission (FTC), and other participating agencies include the Federal Deposit Insurance Corporation (FDIC), AARP , and the Better Business Bureau (BBB). Beware before you share Phishing scams Avoid clicking on malicious links in emails and social media.

Consumer Protection 99

Consumer Protection Identity Theft Scams Social Engineering 99

The Last Watchdog

DECEMBER 18, 2024

Government initiatives and awareness campaigns will educate users on phishing and malware threats. As breaches continue to escalate in frequency and cost, the demand for cyber insurance and heightened regulatory compliance will rise, pushing companies to not only protect their data but to prove adherence to evolving security standards.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

Security Affairs

DECEMBER 31, 2024

RIBridges supports state programs like Medicaid, SNAP, Rhode Island Works, childcare assistance, long-term care, and HealthSource RI insurance. Rhode Islanders are urged to protect their financial information by freezing and monitoring credit, enabling multi-factor authentication, and avoiding phishing scams.

Identity Theft 74

Identity Theft Data breaches Insurance Hacking 74

Security Affairs

MARCH 13, 2025

As of February 2025, Medusa developers and affiliates have impacted over 300 victims from a variety of critical infrastructure sectors with affected industries including medical, education, legal, insurance, technology, and manufacturing.” ” reads the joint advisory.

Ransomware 69

Ransomware Encryption Cryptocurrency Insurance 69

SecureWorld News

JULY 1, 2025

Generative AI sustains sophisticated, multi-channel social engineering for phishing campaigns to gain access privileges to critical infrastructure. A decade after the Ukraine blackout began with a spear-phishing email, social engineering remains potent. Critical infrastructure is particularly vulnerable at a device level.

Social Engineering 80

Social Engineering Engineering Phishing Healthcare 80

Thales Cloud Protection & Licensing

MARCH 18, 2025

Thales OneWelcome Identity Platform and HIPAA Compliance in 2025 madhav Wed, 03/19/2025 - 05:58 The Health Insurance Portability and Accountability Act (HIPAA) has undergone significant changes in 2025, introducing enhanced requirements to address growing cyber threats and ensure comprehensive data protection.

Healthcare 62

Healthcare Encryption Authentication Penetration Testing 62

SecureWorld News

MARCH 17, 2025

Despite these setbacks, the company has stated that, with its cyber insurance coverage and ongoing remediation efforts, it doesn't expect a long-term material impact on its business fundamentals. The incident contributed to a short-term stock price dip of about 2% and added to operational expenses during the recovery phase.

Cyber Attacks 114

Cyber Attacks Digital transformation Threat Detection Penetration Testing 114

Trend Micro

JUNE 26, 2025

To do this, you can run organizational surveys about security knowledge, conduct a baseline phishing simulation, and evaluate previous incidents. You can use a dedicated security awareness and training offering that combines modern phishing simulations with risk-based training modules. Competition Cyber Risk Assessments What Is?

Security Awareness 78

Security Awareness Cyber Risk Risk Phishing 78

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. This increase is likely driven by high employee turnover and easy access to phishing kits. Meanwhile, “RansomHub” is rising rapidly due to its attractive ransomware-as-a-service (RaaS) model.

Cyber Attacks 59

Cyber Attacks Phishing Ransomware Cyber Insurance 59

BH Consulting

OCTOBER 24, 2024

MORE NSA to insurers: stop bankrolling ransom payments. MORE Cofense looks at a recent phishing campaign that used HR-related themes. MORE Related: MITRE’s EMB3D threat model now covers OT devices. MORE UN: Telegram enables “billion dollar” cyber fraud (and other crimes too).

Social Engineering 69

Social Engineering Passwords Cybersecurity Ransomware 69

Centraleyes

JUNE 9, 2025

In fact, forward-looking providers and even cyber insurers are moving this direction – some cyber insurance companies are launching their own MSSP services with promises of quantified risk reduction and insurance discounts for clients. .” This is a compelling value proposition that many traditional MSSPs can’t match.

Cyber Risk 52

Cyber Risk Risk Insurance Cyber Insurance 52

The Last Watchdog

DECEMBER 15, 2024

Cunningham John Paul Cunningham , CISO, Silverfort Identity-based attacks in 2024, like those on Microsoft and Snowflake, are prompting insurers to intensify scrutiny in 2025. MFA attacks, leveraging phishing and session hijacking, are set to rise.

Cybersecurity 290

Cybersecurity CISO Cyber threats Risk 290

Security Affairs

OCTOBER 27, 2024

CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812 Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment Internet Archive was breached twice in a month Unknown threat actors exploit Roundcube Webmail flaw (..)

Data breaches 120

Data breaches Healthcare Cybercrime Hacking 120

Digital Shadows

DECEMBER 5, 2024

One private equity CISO reported a 400% increase in phishing attempts on acquired companies post-M&A deal announcements. By contrast, the finance and insurance; professional, scientific, and technical services (PSTS); and retail trade sectors accounted for 8% each. Totaling an impressive $2.5

Cybersecurity 59

Cybersecurity Accountability Risk Software 59

Security Affairs

MAY 15, 2025

Nova Scotia Power customers are warned about phishing scams impersonating the utility to steal data. For some of our customers, bank account numbers (for pre-authorized payment) may also have been impacted, if this information was provided by these customers.

Data breaches 71

Data breaches Energy and Utilities Insurance Accountability 71

Webroot

APRIL 22, 2025

Financial services industry: Banks, insurance companies and other financial organizations offer a wealth of opportunity for hackers who can use stolen bank account and credit card information for their own financial gain. In 2024, there were 14 data breaches involving 1 million or more healthcare records.

Data breaches 72

Data breaches Identity Theft Passwords eCommerce 72

Malwarebytes

JANUARY 20, 2025

Welcome to 2025 Stay safe!

Insurance 75

Insurance Phishing Advertising Encryption 75

Centraleyes

MARCH 13, 2025

Case in Point : In 2019, First American Title Insurance Company experienced a significant data exposure incident, revealing sensitive customer documents due to a vulnerability in their document-sharing application. phishing attacks), and their specific roles in protecting sensitive information.

Cybersecurity 52

Cybersecurity Financial Services Risk Encryption 52

Thales Cloud Protection & Licensing

OCTOBER 14, 2024

While this is a positive trend, organizations must implement robust MFA solutions, such as hardware tokens and phishing-resistant methods (PKI and FIDO passkeys), instead of depending on SMS or email-based solutions. When asked about zero-trust security, 41% said access management and authentication are critical components.

Financial Services 62

Financial Services Threat Reports Authentication Banking 62

Jane Frankland

JANUARY 12, 2025

Sophisticated social engineering tactics, phishing campaigns, or financial incentives make it easier for cybercriminals to use insiders as tools for gaining access and maintaining their foothold in systems rather than hacking in. Cyber threats often exploit human errors, whether through phishing attacks, weak passwords, or lapses in protocol.

Cybersecurity 130

Cybersecurity CISO Insurance IoT 130

Security Affairs

MAY 27, 2025

Nova Scotia Power warned customers about phishing scams impersonating the utility to steal data. The company urges vigilance against suspicious messages or phishing attempts and is working with cybersecurity experts to assess the scope of the incident. ” reads the update.

Energy and Utilities 82

Energy and Utilities Ransomware Data breaches Phishing 82

Security Boulevard

MARCH 20, 2025

ThreatLabz researchers demonstrated how DeepSeek can be manipulated to quickly generate phishing pages that mimic trusted brands. generated phishing campaigns: A ThreatLabz case study demonstrates how DeepSeek can create a phishing page in just five prompts.AI-driven

Social Engineering 75

Social Engineering Phishing Risk Insurance 75

Webroot

FEBRUARY 21, 2025

Cybercriminals are constantly developing new malware , ransomware , and phishing attacks that can steal identities, encrypt memorable family photos and documents for ransom, and turn home computers into devices that criminals take over to send spam or steal data.

Identity Theft 68

Identity Theft Backups Antivirus Encryption 68

Trend Micro

JUNE 10, 2025

Worldwide 2023 Email Phishing Statistics and Examples BERT Ransomware Group Targets Asia and Europe on Multiple Platforms See all articles Trend Vision One™ - Proactive Security Starts Here. 6 Alerts Back Unread All Inside the criminal mind: Trend’s deep dive into cybercrime.

Cyber Risk 52

Cyber Risk Risk Network Security Insurance 52

SecureWorld News

DECEMBER 27, 2024

Expect to see AI-enabled phishing campaigns, deepfake scams, and automated attacks grow in complexity. Defensive AI breakthroughs: Tools that flag phishing attempts and scams more effectively, offering users clearer warnings and peace of mind. Secure digital identities: Broader adoption of services like Clear and ID.me

Cybersecurity 123

Cybersecurity CISO Government Risk 123

Duo's Security Blog

MARCH 31, 2025

With the widest range of supported authenticators, Duo helps organizations transition away from weaker SMS and phone-call 2FA and towards push-based smartphone apps with verified number matching and phishing-resistant or passwordless authenticators. Learn more about the types of Duo authenticators available.

Healthcare 52

Healthcare Authentication Risk Firewall 52