Security Affairs

MARCH 24, 2025

The Cloak ransomware group claims responsibility for a cyberattack on the Virginia Attorney Generals Office that occurred in February. The ransomware group Cloak has claimed responsibility for a February cyberattack on the Virginia Attorney General Office.

Ransomware 105

Ransomware Hacking Social Engineering Manufacturing 105

eSecurity Planet

NOVEMBER 6, 2024

Following a July 18 attack by the Rhysida ransomware group — believed to have Russian affiliations — Columbus is still reeling from the exposure of vast amounts of sensitive resident data. This data reportedly includes everything from names and addresses to Social Security numbers and bank account details.

Ransomware 113

Ransomware Authentication Identity Theft Penetration Testing 113

Digital Shadows

OCTOBER 25, 2024

During the investigation, we discovered a wider trend: a campaign of escalated social engineering tactics originally associated with the ransomware group “Black Basta.” Ultimately, the attackers’ end goal in these incidents is almost certainly the deployment of ransomware.

Social Engineering 128

Social Engineering Engineering Phishing Accountability 128

Security Affairs

MAY 24, 2025

law firms for 2 years using callback phishing and social engineering extortion tactics. law firms using phishing and social engineering. Linked to BazarCall campaigns, the group previously enabled Ryuk and Conti ransomware attacks. FBI warns Silent Ransom Group has targeted U.S.

Social Engineering 115

Social Engineering Antivirus Phishing Authentication 115

SecureWorld News

NOVEMBER 8, 2023

Social engineering attacks have long been a threat to businesses worldwide, statistically comprising roughly 98% of cyberattacks worldwide. Given the much more psychologically focused and methodical ways that social engineering attacks can be conducted, it makes spotting them hard to do.

Social Engineering 113

Social Engineering Engineering Cyber Attacks Artificial Intelligence 113

Security Affairs

JANUARY 22, 2025

Two ransomware groups exploiting Microsoft 365 services and default settings to target internal enterprise users. Sophos researchers started investigating two distinct clusters of activity, tracked as STAC5143 and STAC5777, in response to customer ransomware attacks in November and December 2024.

Ransomware 98

Ransomware Malware Social Engineering Phishing 98

Security Boulevard

DECEMBER 16, 2024

Hackers likely stole personal information such names, addresses, and SSNs in a ransomware attack on Rhode Island's human services systems and are threatening to release the data as state and federal officials and Deloitte scrambling to mitigate the data breach.

Ransomware 110

Ransomware Data breaches Social Engineering Data privacy 110

The Last Watchdog

APRIL 11, 2022

From financial institutions to meat producers, it seems every industry has been impacted by ransomware in the past year — maybe even the past week. Related: Tech solutions alone can’t stop ransomware. Put simply, ransomware attacks are on the rise because of profits. Why the stark increase? Low cost attacks.

Ransomware 235

Ransomware Social Engineering Passwords Engineering 235

Tech Republic Security

MAY 21, 2020

Cyberattacks against hospitals and medical facilities have risen this year, often via ransomware and social engineering exploits, says IntSights.

Social Engineering 218

Social Engineering Healthcare Engineering Ransomware 218

Digital Shadows

MAY 15, 2024

"Black Basta" ransomware group uses new email spam and vishing to spread malware. Learn more about protective measures for your organization.

Social Engineering 119

Social Engineering Engineering Ransomware Malware 119

eSecurity Planet

JUNE 20, 2025

Importantly, Aflac noted that “our systems were not affected by ransomware,” and business operations, including underwriting, claims processing, and customer support, remain uninterrupted.

Social Engineering 95

Social Engineering Cybersecurity Insurance Cybercrime 95

SecureWorld News

MAY 28, 2025

In early May 2025, two of the United Kingdom's best-known grocers, Marks & Spencer (M&S) and the Co-op, as well as luxury retailer Harrods, were struck by sophisticated social-engineering attacks that tricked IT teams into resetting critical passwords and deploying ransomware across their networks.

Retail 105

Retail Social Engineering Passwords Ransomware 105

The Last Watchdog

MAY 5, 2022

Ransomware? Well, the stats are even scarier with over 50% increase in ransomware attacks in 2021, compared to 2020. The media paid close attention to ransomware attacks last year, as they had a significant impact on Colonial Pipeline, the nation’s largest fuel distributor, and JBS, the nation’s largest meat distributor.

Ransomware 247

Ransomware Risk Internet Internet 247

Krebs on Security

NOVEMBER 21, 2024

Members of Scattered Spider are reputed to have been involved in a September 2023 ransomware attack against the MGM Resorts hotel chain that quickly brought multiple MGM casinos to a standstill. In January 2024, KrebsOnSecurity broke the news that Urban had been arrested in Florida in connection with multiple SIM-swapping attacks.

Identity Theft 268

Identity Theft Phishing Cryptocurrency Accountability 268

Tech Republic Security

JULY 10, 2024

Read about the new Cisco Talos report on the top ransomware groups’ techniques and learn how to mitigate this cybersecurity risk. Cisco Talos observed the TTPs used by 14 of the most prevalent ransomware groups based on their volume of attack, impact to customers and atypical behavior.

Ransomware 211

Ransomware Risk Cybersecurity Social Engineering 211

Security Boulevard

JANUARY 31, 2025

Bloody hell: New York Blood Center Enterprises crippled by ransomware scrotes unknown. The post Ransomware Scum Out For Blood: NYBCe is Latest Victim appeared first on Security Boulevard.

Ransomware 91

Ransomware Social Engineering Healthcare Data privacy 91

Krebs on Security

APRIL 11, 2023

This type of exploit is typically paired with a code execution bug to spread malware or ransomware.” ” According to the security firm Qualys , this vulnerability has been leveraged by cyber criminals to deploy Nokoyawa ransomware.

Social Engineering 305

Social Engineering Ransomware Internet Internet 305

The Last Watchdog

NOVEMBER 19, 2023

That’s largely because the splashy headlines and online buzz created by bringing down the pair of casinos will only motivate more mid-level cybercriminals to follow Scattered Spiders’ model, putting wide-reaching businesses at risk of ransomware attacks due to the rise of ransomware-as-a-service models.

Social Engineering 310

Social Engineering Passwords Authentication Marketing 310

The Last Watchdog

JUNE 21, 2020

Ransomware is undoubtedly one of the most unnerving phenomena in the cyber threat landscape. Related: What local government can do to repel ransomware Ransomware came into existence in 1989 as a primitive program dubbed the AIDS Trojan that was spreading via 5.25-inch inch diskettes. inch diskettes. FBI spoofs 2012 – 2013.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

SecureWorld News

JUNE 9, 2025

Additionally, a distributed workforce, ranging from remote maintenance technicians to cabin crews, multiplies entry points for social-engineering tactics like phishing. Aircraft themselves are nodes on data networks, constantly transmitting telemetry, engine performance metrics, and passenger connectivity data.

Cybersecurity 118

Cybersecurity Social Engineering Computers and Electronics Risk 118

SecureWorld News

MAY 21, 2025

In a bold response to a sophisticated insider-led data breach, Coinbase has turned the tables on cybercriminals who recently targeted the organization with ransomware. This method sharply diverges from the conventional and frequently clandestine ransomware negotiations that many organizations engage in.

Ransomware 97

Ransomware Social Engineering Data breaches Cryptocurrency 97

Malwarebytes

JUNE 18, 2025

Social engineering and extortion Scams are so difficult to analyze because they vary both in their delivery method and their method of deceit. A message that tries to trick a person into clicking a package tracking link is a simple act of social engineering—relying on false urgency or faked identity to fool a victim.

Scams 103

Scams Social Engineering Media Engineering 103

Security Affairs

OCTOBER 17, 2023

What is the impact of ransomware on organizations? Based on Ransomlooker, a free Cybernews tool for monitoring the dark web and other hidden areas of the internet, 64% of organizations have already suffered from a ransomware attack. One employee’s mistake can cost a company millions of dollars.

Social Engineering 139

Social Engineering Ransomware Engineering Phishing 139

SecureWorld News

MAY 16, 2025

Scattered Spider is a financially motivated threat actor group known for its social engineering prowess, SIM-swapping attacks, and living-off-the-land (LOTL) techniques. The group is well known to employ social engineering tactics to gain access, so hardening your help desk is an immediate first step in defense," Staynings continued.

Retail 74

Retail Social Engineering Engineering Telecommunications 74

The Hacker News

JULY 16, 2024

The infamous cybercrime group known as Scattered Spider has incorporated ransomware strains such as RansomHub and Qilin into its arsenal, Microsoft has revealed.

Cyber Attacks 128

Cyber Attacks Social Engineering Ransomware Cybercrime 128

SecureWorld News

NOVEMBER 6, 2024

Protecting against new threats: supply chain attacks, ransomware, and deepfakes Zero Trust is built to counter modern threats like supply chain attacks, ransomware-as-a-service (RaaS), and deepfake social engineering. Deepfake social engineering: Deepfakes can mimic legitimate users to manipulate access.

Social Engineering 104

Social Engineering Authentication Architecture Ransomware 104

SecureWorld News

APRIL 22, 2025

This incident highlights the critical vulnerability in cryptocurrency communities, where high-net-worth individuals or executives may be more prone to social engineering attacks due to the high volume of media and investor engagement they handle. Lazarus is also behind significant cryptocurrency heists, such as the $1.5

Cryptocurrency 90

Cryptocurrency Social Engineering Cybercrime Engineering 90

Security Affairs

APRIL 7, 2025

Guidebooks are also available to instruct on how to exploit the information obtained, in order to more effectively target victims through social engineering and doxxing campaigns.

Cybercrime 140

Cybercrime Social Engineering Accountability Government 140

The Hacker News

MAY 15, 2024

The Microsoft Threat Intelligence team said it has observed a threat it tracks under the name Storm-1811 abusing the client management tool Quick Assist to target users in social engineering attacks.

Social Engineering 133

Social Engineering Ransomware Engineering 133

Tech Republic Security

MARCH 23, 2022

Using social engineering rather than traditional ransomware tactics, the Lapsus$ group has already hit multiple organizations, says Microsoft. The post Microsoft warns of destructive attacks by Lapsus$ cybercrime group appeared first on TechRepublic.

Cybercrime 176

Cybercrime Social Engineering Engineering Ransomware 176

Krebs on Security

DECEMBER 29, 2020

In almost every category — from epic breaches and ransomware to cybercrime justice and increasingly aggressive phishing and social engineering scams — 2020 was a year that truly went to eleven. But it was hardly a dull one for computer security news junkies.

Scams 330

Scams Social Engineering Cybercrime Advertising 330

Joseph Steinberg

JANUARY 20, 2022

Consider the case of ransomware, for example, and the fact that the number of successful ransomware attacks has skyrocketed in recent years. In actuality, wildfire is not even a good example, because ransomware can actually spread orders of magnitude faster than wildfire!).

Cybersecurity 363

Cybersecurity Artificial Intelligence Ransomware Social Engineering 363

Digital Shadows

JANUARY 22, 2025

In this blog, well preview the reports highlights and give insights into social engineering campaigns leveraging impersonating domains and our predictions for the threats shaping 2025. These methods enable unauthorized access, credential theft, and ransomware deployment, severely disrupting operations and eroding customer trust.

Insurance 65

Insurance Phishing Social Engineering Engineering 65

Security Affairs

MAY 17, 2025

The financially motivated group UNC3944 (also known as Scattered Spider , 0ktapus ) is known for social engineering and extortion. Initially targeting telecoms for SIM swaps, they expanded to ransomware and broader sectors by 2023. They exploit help desks and outsourced IT via social engineering for high-impact attacks.

Retail 68

Retail Social Engineering Cybercrime Financial Services 68

eSecurity Planet

OCTOBER 22, 2024

Cybercriminals employ social engineering techniques to trick you into believing you must resolve fictitious technical issues. The hallmark of ClickFix campaigns is their clever use of social engineering. Even if your credentials are compromised, attackers will face an extra hurdle in accessing your accounts.

Scams 123

Scams Malware Phishing Social Engineering 123

Security Affairs

DECEMBER 1, 2024

Through Zyxel! Unveiling the Past and Present of APT-K-47 Weapon: Asyncshell Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter )

Malware 74

Malware Social Engineering Antivirus Engineering 74

Malwarebytes

OCTOBER 11, 2023

This article is based on research by Marcelo Rivero, Malwarebytes' ransomware specialist, who monitors information published by ransomware gangs on their Dark Web sites. This provides the best overall picture of ransomware activity, but the true number of attacks is far higher.

Ransomware 138

Ransomware Social Engineering Backups Engineering 138