A cyber-espionage campaign linked to the China-affiliated group Billbug has compromised high-profile organizations in Southeast Asia from August 2024 to February 2025, utilizing advanced malware and sophisticated techniques to extract sensitive information.
The Scallywag ad fraud network utilizes specially crafted WordPress plugins to generate approximately 1.4 billion fraudulent bid requests daily, enabling multiple threat actors to monetize pirated content and URL shortening sites.
Cyber insurance claims are increasingly impacted by financial fraud and ransomware attacks, with the manufacturing and healthcare sectors facing the highest risks and costs.
The rise of inexpensive phishing kits and subscription-based Phishing as a Service (PhaaS) platforms is enabling low-skilled criminals to execute sophisticated phishing attacks, posing a significant threat to data security and privacy.
Web application security is crucial for safeguarding digital assets from various online threats, including SQL Injection and Denial of Service attacks, necessitating secure coding practices, regular updates, and effective monitoring.
APT29, also known as Midnight Blizzard, has initiated a sophisticated phishing campaign using wine-themed emails to deploy the Grapeloader malware against European Ministries of Foreign Affairs and embassies.
Security services block users to prevent online attacks triggered by specific actions, safeguarding website integrity and functionality.
In 2024, cybercriminals increasingly exploit identity vulnerabilities through credential theft, primarily using AI-generated phishing emails and infostealers, leading to a significant rise in intrusions and data breaches.
The US Cybersecurity and Infrastructure Security Agency has extended funding for the Common Vulnerabilities and Exposures Program for 11 months to ensure continuity in cybersecurity vulnerability disclosures, while highlighting ongoing challenges regarding the program’s long-term viability and independence.
Microsoft has identified a significant increase in online scams driven by artificial intelligence, blocking over $4 billion in fraud attempts and highlighting the need for collaboration between public and private sectors to combat these evolving threats.
