In 2024, North Korean hackers significantly escalated their cryptocurrency theft operations, stealing over $2.2 billion, which accounted for more than half of global cryptocurrency thefts and marked a 102.88% increase from the previous year.
A critical vulnerability in the Apache Struts application framework, tracked as CVE-2024-53677, is being actively exploited, allowing attackers to perform remote code execution and posing significant risks to affected systems.
Recent analyses reveal a growing threat from sophisticated malware, including the Ramnit worm and Chaya_003, targeting engineering workstations in industrial control systems, posing significant risks to critical infrastructure.
Phishing attacks have surged by over 200% in 2024, with credential phishing incidents increasing by 703%, largely due to the use of generative artificial intelligence that enhances the sophistication of cybercriminal tactics.
A sophisticated vishing attack utilized Microsoft Teams to deliver the DarkGate Remote Access Trojan, employing advanced social engineering tactics to gain remote access to victims’ systems.
The Russian government has classified Recorded Future, a US-based cybersecurity company, as “undesirable,” leading to potential legal repercussions for its operations and affiliates in Russia amid ongoing geopolitical tensions.
