Tech Republic Security

MAY 30, 2025

Cisco Talos identified three strains of malware that spoof AI tools, including ChatGPT.

Scams

Malwarebytes

MAY 1, 2025

Phishing In phishing scams, cybercriminals trick people and businesses into handing over sensitive information like credit card numbers or login details for vital online accounts. The hackers hijacked the channels to spread cryptocurrency scams, while deleting some of the groups old videos in the process.

Small Business

Security Affairs

APRIL 8, 2025

The Tor leak site of the Everest ransomware group went offline after being hacked and defaced over the weekend. The Everest ransomware gangs darknet site went offline after being hacked and defaced, with victim listings replaced by the following message. We cannot exclude the fact that the incident is an exit scam of the group.

Ransomware

Malwarebytes

JANUARY 27, 2025

In May, UnitedHealth CEO Andrew Witty estimated that the ransomware attack compromised the data of a third of US individuals when he testified before the Senate Finance Committee on Capitol Hill. The ALPHV/BlackCat ransomware group claimed the initial attack.

Data breaches

Krebs on Security

NOVEMBER 21, 2024

The targeted SMS scams asked employees to click a link and log in at a website that mimicked their employer’s Okta authentication page. Members of Scattered Spider are reputed to have been involved in a September 2023 ransomware attack against the MGM Resorts hotel chain that quickly brought multiple MGM casinos to a standstill.

Identity Theft

Security Affairs

DECEMBER 2, 2024

Operation HAECHI V (July-Nov 2024) targeted cyber frauds like phishing, romance scams, sextortion, investment fraud, online gambling, BEC, and e-commerce fraud. The authorities have warned of “USDT Token Approval Scam” that allows scammers access to the victims’ cryptocurrency wallets and make unauthorized transactions.

Cryptocurrency

SecureWorld News

FEBRUARY 3, 2025

Department of Justice (DOJ) , the seized domains were actively facilitating the sale of phishing kits, scam pages, and other fraud tools, which were then used by transnational organized crime groups to conduct business email compromise (BEC) schemes. According to the U.S.

Phishing

Krebs on Security

NOVEMBER 14, 2024

That investigation detailed how the 38-year-old Shefel adopted the nickname Rescator while working as vice president of payments at ChronoPay , a Russian financial company that paid spammers to advertise fake antivirus scams, male enhancement drugs and knockoff pharmaceuticals. Ermakov was recently found guilty and given two years probation.

Advertising

Security Boulevard

NOVEMBER 27, 2024

Interpol led 19 African countries in a massive anti-cybercriminal effort dubbed "Operation Serengeti" that shut down a range of scams and attacks that bled $193 million from 35,000 victims. More than 1,000 people were arrested and more than 134,000 malicious infrastructures shut down.

Scams

eSecurity Planet

FEBRUARY 24, 2025

Over 200,000 internal messages from the notorious ransomware group Black Basta have surfaced online exposing deep divisions, ransom negotiations, and internal dysfunction. Cybersecurity experts are now poring over the data, uncovering a rare inside look at how one of the most feared ransomware groups operates and potentially unravels.

Ransomware

Security Affairs

NOVEMBER 21, 2024

Scattered Spider members are part of a broader cybercriminal community called “The Com,” where hackers brag about high-profile cyber thefts, typically initiated through social engineering tactics like phone, email, or SMS scams to gain access to corporate networks. Federal Bureau of Investigation (FBI).

Cybercrime

Malwarebytes

MARCH 17, 2025

The FBI warned specifically about that malware leading to ransomware attacks, but we’ve also seen similar sites that install browser hijackers, adware, and potentially unwanted programs (PUPs). IOCs Below are some recent examples of domains involved in this type of scam and the reason why Malwarebytes products block them.

Malware

SecureWorld News

MAY 14, 2025

Top cybercrime categories: Phishing/spoofing: 193,407 complaints Extortion: 86,415 complaints Personal data breaches: 64,882 complaints Cryptocurrency-related scams: Nearly 150,000 complaints involved cryptocurrency, accounting for $9.3 Ransomware The IC3 recognized 67 new ransomware variants in 2024. billion in losses.

Cybercrime

Malwarebytes

JUNE 19, 2025

Targeted phishing : Combining leaked data allows cybercriminals to engage in very convincing and personalized scams. Ransomware/business email compromise (BEC) attacks : Compromised business credentials facilitate network intrusions or fraudulent wire transfers. The leak includes credentials for virtually every large online service.

Identity Theft

SecureWorld News

JANUARY 16, 2025

A report from 2023 revealed that 67% of energy and utility companies faced ransomware attacks, with many incidents exploiting unpatched vulnerabilities. Hackers used compromised credentials to gain access to Colonial Pipeline's network, deploying ransomware that encrypted critical systems.

Energy and Utilities

Security Boulevard

APRIL 25, 2025

From ransomware attacks disrupting school systems to phishing scams targeting student credentials, educational institutions are prime targets for cybercriminals. Cybersecurity education is critical to protecting individual students and the vast, complex systems that support their learning.

Cybersecurity

Malwarebytes

APRIL 21, 2025

Last week on Malwarebytes Labs: Text scams grow to steal hundreds of millions of dollars Apple patches security vulnerabilities in iOS and iPadOS. Celebrating our Partners of the Year: recognizing excellence and innovation Living off the Land (LOTL) attacks: Detecting ransomware gangs hiding in plain sight Stay safe! Update now!

Scams

Security Affairs

JULY 13, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Datacarry Ransomware DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal Batavia spyware steals data from Russian organizations Taking SHELLTER: a commercial evasion framework abused in- the- wild Open Source Malware (..)

Malware

Malwarebytes

DECEMBER 27, 2024

We started off 2024 with a warning from the British National Cyber Security Centre (NCSC) telling us it expects AI to heighten the global ransomware threat. And if the accidents didnt scare people off, there were also some outright scams targeting people that were eager to use some of the popular applications of AI.

Scams

Digital Shadows

JANUARY 27, 2025

Streamlined RaaS Operations: The ransomware-as-a-service (RaaS) ecosystem has become more efficient, with affiliates adopting new, more specialized strategies like help-desk scams to accelerate and refine their attacks. Buyers of these credentials include ransomware affiliates, un-affiliated threat actors, and IABs.

Scams

Security Affairs

JULY 13, 2025

ransomware case U.S. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. McDonald’s job app exposes data of 64 Million applicants Athlete or Hacker? Russian basketball player accused in U.S. warrant U.S. warrant U.S.

Data breaches

Security Affairs

MAY 27, 2025

Nova Scotia Power confirms it was hit by a ransomware attack but hasn’t paid the ransom, nearly a month after first disclosing the cyberattack. Nova Scotia Power confirmed it was hit by a ransomware attack nearly a month after disclosing a cyber incident. The company revealed it hasnt paid the ransom. Nova Scotia Power Inc.

Energy and Utilities

Security Affairs

NOVEMBER 17, 2024

that reboots locked devices Ymir ransomware, a new stealthy ransomware grow in the wild Amazon discloses employee data breach after May 2023 MOVEit attacks A new fileless variant of Remcos RAT observed in the wild A surge in Pro-Russia cyberattacks after decision to monitor North Korean Troops in Ukraine U.S.

Cryptocurrency

SecureList

DECEMBER 16, 2024

For example, we supported INTERPOL-coordinated action to disrupt the Grandoreiro malware operation, helped counter cybercrime during the 2024 Olympics , and contributed to Operation Synergia II , which aimed to disrupt cyberthreats such as targeted phishing, ransomware, and infostealers. times compared to 2023.

Marketing

eSecurity Planet

NOVEMBER 12, 2024

Aside from antivirus, Norton offers ransomware and hacking protection, privacy monitoring, and a VPN. Even McAfee’s most basic plan includes a VPN, identity monitoring, and text scam detection. Norton 360 offers basic antivirus and ransomware protection, as well as parental controls and dark web monitoring. 5 Pricing: 3.7/5

Antivirus

Security Affairs

FEBRUARY 9, 2025

Malicious packages deepseeek and deepseekai published in Python Package Index Coyote Banking Trojan: A Stealthy Attack via LNK Files The Mac Malware of 2024 Take My Money: OCR Crypto Wallet Thieves on Google Play and App Store AsyncRAT Reloaded: Using Python and TryCloudflare for Malware Delivery Again Go Supply Chain Attack: Malicious Package Exploits (..)

Malware

BH Consulting

NOVEMBER 22, 2024

MORE SentinelOne looks at three ransomware strains targeting cloud servers. MORE A new Android security feature warns of potential scam calls… MORE A malware campaign in Switzerland circulated infected QR codes via letter. MORE How startups can protect their IP from cyber thieves and economic spies.

Accountability

Security Affairs

APRIL 10, 2025

The spam framework evades CAPTCHA and network detection using proxies, unrelated to the Akira ransomware group. Their TrustPilot pages show many 5-star reviews with similar, likely AI-generated content, and occasional 1-star reviews calling them scams or spammy. AkiraBot-linked SEO sites use Akira and ServiceWrap branding.

eCommerce

Webroot

FEBRUARY 21, 2025

Phishing scams, ransomware attacks, data breaches, and identity theft are part of a growing list of online dangers that are a daily reality. It combines multiple security capabilities into one easy-to-use package that includes: Antivirus protection Detects and neutralizes viruses, malware , spyware , and ransomware.

Antivirus

The Last Watchdog

DECEMBER 18, 2024

Amini Pedram Amini , Chief Scientist, Opswat The sophistication and abuse of AI are escalating as costs drop, driving a surge in ML-assisted scams and attacks on physical devices. Anti-ransomware solutions incorporate AI to aggregate system-level insights and protect against zero-day attacks.

Risk

eSecurity Planet

JUNE 30, 2025

The table below provides a quick overview of the leading tools, highlighting their core strengths and ideal use cases: Best for Key features Deployment type Starting price (Billed annually) Malwarebytes Multi-layer malware defense Real-time threat monitoringScam and ransomware blocking Hybrid $119.99 Overall Reviewer Score 4.6/5 5 Cost 4.3/5

Password Management

SecureWorld News

MAY 28, 2025

In early May 2025, two of the United Kingdom's best-known grocers, Marks & Spencer (M&S) and the Co-op, as well as luxury retailer Harrods, were struck by sophisticated social-engineering attacks that tricked IT teams into resetting critical passwords and deploying ransomware across their networks. retail industry.

Retail

Malwarebytes

FEBRUARY 4, 2025

The same is true for all text-based social engineering tricks, as AI chat tools can write alluring direct messages for romance scams and craft urgent-sounding texts that can fool people into clicking on links that carry malware. In 2023, Malwarebytes Labs subverted these boundaries to successfully get ChatGPT to write ransomware twice.

Artificial Intelligence

Security Boulevard

MARCH 7, 2025

And get the latest on cyber scams; zero-day vulnerabilities; and critical infrastructure security. The scammers claim that the BianLian ransomware group swiped troves of data files from the recipients network, and instruct recipients to transfer the ransom money into a Bitcoin wallet using a QR code included in the letter.

Cybersecurity

Security Affairs

JUNE 15, 2025

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Spyware

Security Affairs

AUGUST 9, 2025

Embargo Ransomware nets $34.2M scam accounts in global takedown Trend Micro fixes two actively exploited Apex One RCE flaws U.S. Embargo Ransomware nets $34.2M scam accounts in global takedown Trend Micro fixes two actively exploited Apex One RCE flaws U.S. Embargo Ransomware nets $34.2M

Data breaches

Hacker's King

OCTOBER 26, 2024

Cybersecurity Week highlights various forms of threats, including phishing scams, ransomware attacks, and data breaches, which can have devastating effects on individuals and businesses alike. This practice minimizes the impact of data loss, especially in the event of ransomware attacks or hardware failures.

Cybersecurity