Threat actors, particularly UNC5221, are exploiting critical vulnerabilities in Ivanti Cloud Service Appliances to execute remote code, steal credentials, and implant webshells, prompting a joint advisory from CISA and the FBI.
Chief Information Security Officers are increasingly integrated into executive roles, yet face significant challenges in aligning priorities and securing adequate budgets for cybersecurity initiatives.
The PlushDaemon APT group, believed to be aligned with Chinese state interests, conducted a sophisticated supply-chain attack on the South Korean VPN provider IPany by embedding a backdoor known as SlowStepper into the legitimate software installer.
In 2024, 84% of healthcare organizations reported experiencing cyber-attacks, with phishing being the most common exploit, leading to significant financial damage and increased regulatory scrutiny.
Thousands of account credentials from major cybersecurity vendors have been discovered for sale on dark web marketplaces, primarily due to the rise of infostealers, posing significant risks to both vendors and their clients.
In 2025, the cyber threat landscape in North America is expected to be significantly influenced by geopolitical dynamics, particularly with Donald Trump as President, as threat actors from rival nation-states exploit vulnerabilities in cyberspace, posing challenges for organizations across the region.
NCC Group reported a record high of 574 ransomware incidents in December 2024, driven by the aggressive tactics of the newly emerged extortion group Funksec and notable attacks from Black Basta, highlighting a concerning trend in the evolving threat landscape.
The UK education sector faces a growing threat from cyberattacks, with 77% of institutions reporting breaches in the past year, driven by ransomware incidents and inadequate cybersecurity measures.
Two ransomware groups, STAC5143 and STAC5777, are leveraging Microsoft Teams and other Microsoft 365 services to gain unauthorized access to corporate systems for data exfiltration and potential extortion.
Recent research reveals that cybercriminals are increasingly using Zendesk’s platform for phishing campaigns and investment scams, employing tactics like brand impersonation and deceptive subdomains to target victims.
