Category: Cybersecurity Insiders

Over the past few years, the cybersecurity landscape has been increasingly dominated by ransomware attacks. These threats have grown more complex, evolving from simple file-encryption schemes to multi-layered extortion tactics. Notably, we’ve seen the rise of double extortion—where attackers not…

Read more →

In 2023, the Federal Trade Commission (FTC) released a warning to five of the most popular tax preparation companies, stating they could face civil penalties if they used confidential data collected from consumers – for unrelated purposes.  Two years after…

Read more →

Just days after the United States was implicated in launching a series of cyberattacks on the telecom sector under the guise of the “Volt Typhoon” campaign, China has leveled direct accusations against the U.S. National Security Agency (NSA) for conducting…

Read more →

In the wake of a cyberattack, many organizations instinctively believe that shutting down their systems is the quickest and most effective way to minimize damage. While this response may seem logical, it can, in fact, complicate recovery efforts and lead…

Read more →

The Rise of Zero-Click Spyware Recent revelations about a zero-click exploit targeting WhatsApp users underscore the growing threat of sophisticated spyware campaigns. Unlike traditional cyberattacks that require user interaction – such as clicking a malicious link or downloading a compromised…

Read more →

DaVita, a major player in the kidney dialysis industry, has recently fallen victim to a ransomware attack. Fortunately, there have been no reports of the breach affecting patient-related services as of now. However, the situation could become more concerning if…

Read more →

In recent years, we’ve witnessed a range of cyberattacks targeting critical infrastructure and both public and private sector entities. These cyber breaches have often disrupted operations, compromised sensitive data, and caused significant economic damage. However, attacks targeting healthcare infrastructure have…

Read more →

In today’s digital age, personal and professional data are constantly being stored, transferred, and backed up across various devices. Among these devices, hard drives and smartphones often contain an immense amount of sensitive information—data that, if left unprotected or improperly…

Read more →

In a chilling reminder of the growing cyber threats to the healthcare industry, Laboratory Services Cooperative (LSC), a U.S. lab testing provider, confirmed a major data breach that compromised the personal and medical data of 1.6 million individuals. The October…

Read more →

In an era where cybersecurity teams face overwhelming alert volumes, staff shortages, and ever-evolving threats, Radiant Security has introduced a transformative solution: the Adaptive AI SOC platform. This innovation promises to revolutionize how security operations centers (SOCs) operate, offering not…

Read more →

In today’s digital world, passwords alone are not enough to keep our online accounts safe. Cybercriminals are constantly finding ways to steal login credentials, whether through phishing scams, data breaches or malware. This is where multifactor authentication (MFA) comes in.…

Read more →

In a troubling development for enterprise cloud users, federal authorities are investigating a major data breach involving Oracle—one of the world’s leading cloud infrastructure providers. Hackers reportedly gained unauthorized access to Oracle systems, stealing sensitive client login credentials including usernames,…

Read more →

In recent years, we’ve become familiar with ransomware attacks, where hackers infiltrate computer networks, encrypt files, and demand payment in exchange for restoring access. As these cybercriminal tactics evolved, attackers began stealing sensitive data in addition to encrypting it—using the…

Read more →

Now that the March Madness tournament has concluded with thrilling games and memorable moments, fans are reflecting on their brackets and the champions crowned. While the excitement of the tournament may have subsided, the cybersecurity risks tied to major events…

Read more →

Seven Schools Have Confirmed Event Dates for April and May BCR Cyber, a leading provider of comprehensive cybersecurity training and job placement services, and the Maryland Association of Community Colleges (MACC), the advocate and unified voice for Maryland’s 16 community…

Read more →

Ransomware attacks have been on the rise in recent months, likely due to the ease with which hackers can generate substantial earnings through increasingly aggressive tactics, including double and triple extortion. These methods force victims to not only pay a…

Read more →

Ransomware attacks are known to frequently occur over weekends, and Sensata Technologies, a prominent manufacturer of sensors and electrical components for critical applications, recently became a victim of such an attack. According to a filing with the U.S. Securities and…

Read more →

Cybersecurity discussions often spotlight phishing scams, ransomware attacks and other external threats. But there’s a foundational risk that quietly underpins many of these issues: poor handling of file uploads and delivery. In 2024, malicious file detections rose 14% over the previous year,…

Read more →

For years, global cybersecurity alerts have been issued to safeguard a variety of devices—ranging from personal computers and smartphones to servers and Internet of Things (IoT) devices. Yet, there is a new and unsettling warning gaining traction within tech and…

Read more →

Clop Ransomware Targets WK Kellogg Co. in Cyber Attack WK Kellogg Co., now operating as a separate entity from the Kellogg Company, has fallen victim to a cyber-attack, believed to be a ransomware attack. After conducting a technical investigation, the…

Read more →

In what has become a significant and concerning information security incident, the Office of the Comptroller of the Currency (OCC), a key branch of the United States Treasury Department tasked with overseeing currency transactions within the nation’s banking system, has…

Read more →

In today’s increasingly digital world, concerns about the safety and security of personal and corporate data are paramount. With high-profile incidents in the media, terms like “data breach” and “data leak” are often used interchangeably. However, there are significant differences…

Read more →

Robert Cottrill, Technology Director at digital transformation company ANS, explores the balance between the benefits of AI and the risks it poses to data security and privacy, particularly for large enterprises. With the UK Government ramping up investment through its…

Read more →

Most internet users are familiar with PDF files and the role they play in delivering essential documents in a transferable and readable format across various devices, such as smartphones and computers. Whether it’s a telecom bill, an image, or even…

Read more →

Alex Quilici CEO of YouMail   This Identity Management Day, be skeptical, not scared. By now, your identity is already out there. Your phone number, job title, connections, even your social security number — all publicly available. The genie is out…

Read more →

The beginning of 2025 has introduced some key complexities that CISOs will need to navigate going forward. With digitalization taking hold of almost every industry in some form or another, telemetry pipelines are emerging as essential tools. By facilitating the…

Read more →

Cybercriminals are always finding new ways to trick people, and one of the latest scams on the rise is called vishing, short for voice phishing. Unlike email scams (known as phishing), vishing happens over the phone. Recent studies have highlighted…

Read more →

It comes once a year.  No, it’s not Christmas, a birthday, or an anniversary.  This is tax season. The time of year when Americans compile their most confidential personal and financial information to file taxes with the federal and state…

Read more →

In the world of digitization, cyberattacks have become an increasingly common form of warfare, with Distributed Denial of Service (DDoS) attacks standing out as one of the most prominent and disruptive methods. While often perceived as a technical nuisance that…

Read more →

Cyberattacks are a persistent and growing threat that cause significant financial strain to victims, whether public or private organizations. However, recent research by Vodafone has revealed a particularly alarming trend: every year, small and medium-sized enterprises (SMEs) are losing nearly…

Read more →

For years, businesses have relied on software solutions to help defend against the growing threat of cyber-attacks. However, a new development in the cybersecurity space may soon revolutionize how these threats are mitigated. Google, the technology giant and subsidiary of…

Read more →

The recent cyberattack attributed to the “Holy League Coalition” hacking group has raised significant concerns about cybersecurity, as key British institutions fall victim to a highly sophisticated assault. This group, reportedly a collaboration between Russian cyber operatives and Pro-Palestinian hackers,…

Read more →

In recent years, the rise of AI-generated art and animation has sparked a revolution in how creative content is produced. Among the most notable examples is the trend of creating artworks inspired by Studio Ghibli’s iconic animation style. With its…

Read more →

Kubernetes has become the backbone of modern cloud native applications, and as adoption grows, organizations increasingly seek to consolidate workloads and resources by running multiple tenants within the same Kubernetes infrastructure. These tenants could be internal teams, or departments within…

Read more →

Too Many Organizations Look to Scheduled Audits to Dictate Patching Efforts Though it may seem obvious that patches to critical vulnerabilities in IT systems need to be implemented right away, the fact remains that huge numbers of today’s enterprises tend…

Read more →

Ransomware gangs are notorious for first stealing data from servers before encrypting it, holding it hostage until a ransom is paid. The act of siphoning off data intensifies the pressure on victims, as they are faced with the dual threat…

Read more →

Cloud services have revolutionized the way businesses operate, delivering instant access to data, applications and resources at the touch of a mouse. Accessibility through a mix of public cloud services, SaaS applications, private clouds, and on-premises infrastructure has become the…

Read more →

Maintaining robust network security in today’s threat climate is a challenge. Adhering to best practices is just as difficult. However, both are necessary to ensure that organizations can continue running efficiently and securely with minimal interruption or downtime to the…

Read more →

AI innovation is moving at a scale we haven’t seen before. Hyperscalers like Salesforce, Microsoft, and Google are racing to make agentic AI available to the wider public. And the appetite is there! A recent survey showed that 82% of…

Read more →

While organizations have spent years fortifying human identity security, a critical vulnerability has been growing in our digital infrastructure. For every human identity in today’s enterprise, there are now approximately 50 machine identities operating in the shadows. These non-human identities…

Read more →

Global investment in edge computing is expected to rise to close to US$400bn by 2028, meaning this market will have almost doubled in just five years. For sectors where secure, reliable data processing is vital to critical decision-making harnessing the…

Read more →

Introduction The evolution of Security Service Edge (SSE) adoption from 2024 to 2025 reflects significant shifts in enterprise security strategies, cloud adoption, and Zero Trust implementations.  The 2024 SSE Adoption Report outlined the growing demand for SSE as hybrid work…

Read more →

A cyberattack targeting five of Australia’s leading superannuation providers has reportedly resulted in significant financial theft and widespread account disruptions. The breach, which affected several prominent organizations, has seen one of the providers lose over $500,000 in funds. Additionally, accounts…

Read more →

A new and potentially devastating alliance has emerged in the world of cybercrime. EvilCorp, an infamous cybercriminal group suspected to be led by an ex-FSB officer from Russia, has partnered with RansomHub, a notorious ransomware-as-a-service (RaaS) provider. This collaboration has…

Read more →

For those unfamiliar with World Cloud Security Day, here’s a brief yet essential overview. Celebrated annually on April 3rd, this day serves as a crucial reminder of the importance of implementing strong security measures to combat the rising cyber threats…

Read more →

Google Calendar is a widely used tool for scheduling online events, meetings, and sending reminders. However, a concerning new trend has emerged where cybercriminals are exploiting this platform to target unsuspecting victims with phishing scams and attempts to steal sensitive…

Read more →

Managing secrets, the API keys, authentication tokens, and encryption credentials that keep our applications securely running is a critical yet increasingly complex challenge in modern enterprises. Organizations use secret management tools like AWS Secrets Manager, HashiCorp Vault, and Azure Key…

Read more →

The platform where people forget their passwords the most is YouTube, leading with the highest number of password-related searches. Video streaming users forget their login details the most, with the top platform’s users requesting new passwords over four times a…

Read more →

Royal Mail Data Breach: 144GB of Sensitive Information Now Available for Sale Royal Mail has recently made headlines after falling victim to a sophisticated cyber-attack, resulting in the theft of a large amount of sensitive data. The breach has now…

Read more →

With the rapid advancement of artificial intelligence (AI), deepfake technology has emerged as a significant cybersecurity threat. Deepfakes, which use AI to manipulate images and videos, are increasingly being used for malicious purposes, such as misinformation campaigns, identity fraud, and…

Read more →

As anticipated, Russian Railways became the target of a large-scale Distributed Denial of Service (DDoS) attack, significantly impacting both its website and mobile application. The cyberattack disrupted online services, rendering them inaccessible to users for an extended period. However, despite…

Read more →

Introduction The rise of Agentic AI has become one of the most talked about trends in the AI world. The move to autonomous AI Agents promises to be as big a leap forward as Generative AI was over traditional AI…

Read more →

New Jersey passed a new cybersecurity regulation in January 2025. This makes the state the latest to implement strong rules regarding people’s data and how it is protected. The new law is going to affect every company that handles personal…

Read more →

We live in a time where technology is changing fast, and artificial intelligence is becoming part of everything we do. It’s showing up in how we work, live, and connect with each other. It is essential that people understand what…

Read more →

Quantum sensors offer dramatically increased sensitivity compared to their classical incumbents or even enable new sensing capabilities altogether. Multiple industries are expected to benefit from quantum sensing innovations, including atomic clocks, quantum magnetometers, quantum gyroscopes, and more. However, bringing quantum…

Read more →

In what can be described as a significant security breach, over 1.5 million personal photographs have been exposed and are now accessible online, all due to a human error that led to the leak of sensitive information. This incident has…

Read more →

In recent years, cyber threats have become one of the most significant security concerns for nations around the world. Among the most notable players in this growing arena is China, whose cyber capabilities have made it a major threat to…

Read more →

For years, businesses have relied on email as their primary communication tool, trusting legacy security systems to keep sensitive information safe. But cyber threats have changed. The simple spam filters and antivirus tools that once seemed sufficient now fail against…

Read more →

Cloud adoption is continuing to transform the IT infrastructure and security landscapes by delivering unmatched scalability and flexibility. Multi-cloud strategies further enhance these advantages but introduce unique challenges, prompting organizations to implement innovative solutions to safeguard their critical assets effectively.…

Read more →

Zoom, the popular video conferencing software widely used by businesses across the globe for meetings and virtual collaboration, has recently made headlines—but not for the reasons you might expect. The company has found itself linked to an alarming rise in…

Read more →

In a rapidly evolving and increasingly intelligent threat landscape, the cybersecurity industry grapples with a staggering gap between overworked security teams and the protection modern enterprises require, leaving space for cyber attacks to creep in through the cracks. Threat actors…

Read more →

Major sporting events like the Super Bowl, the World Series or March Madness can be prime time for cybercriminals to try to prey on people. Whether it’s by using URLs that look like real sports betting and news sites or…

Read more →

In today’s digital landscape, APIs (Application Programming Interfaces) are essential for modern business operations. They facilitate seamless connectivity and data exchange across diverse platforms and services, driving innovation and efficiency. However, this interconnectedness also brings significant security and privacy challenges.…

Read more →

The year 2025 is critical for cybersecurity as cyber threats are advancing unprecedentedly. AI-driven attacks, deepfake scams, and state-of-the-art ransomware schemes have become more prevalent. Businesses and individuals must remain vigilant against these emerging dangers. Implementing various security measures, adopting…

Read more →

New Malware Crocodilus Targets Crypto Wallet Credentials Malware gangs are continually evolving their tactics to steal sensitive information, especially in the ever-growing world of cryptocurrency. Recently, a new malware variant called Crocodilus has emerged, specifically targeting mobile users in Spain…

Read more →

In today’s increasingly digital world, ransomware attacks have become one of the most pervasive threats to businesses and individuals alike. Ransomware is a type of malicious software that locks a victim’s files or entire system, demanding a ransom to restore…

Read more →

Payment Card Industry Data Security Standard (PCI DSS) 4.0.1 kicks in on March 31, and with it comes stricter security requirements – especially around Non-Human Identities (NHIs). These include system and application accounts such as service accounts, service principals, and…

Read more →

When users enter a website, it usually prompts them to enter login credentials and often offers the option to save that information for future use. While this feature might be convenient, storing usernames and passwords can pose a security risk…

Read more →

Just a few days ago, Oracle made headlines after becoming the victim of a cyberattack that led to the leak of over 6 million records, affecting both its customers and employees. Initially, the incident appeared to be a ransomware attack.…

Read more →

Palo Alto, USA, 28th March 2025, CyberNewsWire The post SquareX Discloses Browser-Native Ransomware that Puts Millions at Risk first appeared on Cybersecurity Insiders. The post SquareX Discloses Browser-Native Ransomware that Puts Millions at Risk appeared first on Cybersecurity Insiders. This…

Read more →

Over half of page requests for web content are now automated as LLM scrapers take over Over a third of login attempts for the Technology industry are account takeover attacks Healthcare and Hospitality were the most targeted industries on web,…

Read more →

The healthcare industry is particularly vulnerable to cybersecurity threats due to the valuable data it processes; Protected Health Information (PHI) is among the most sensitive and valuable data in existence. As the past few years have shown, the consequences of…

Read more →

The ‘dark web’ – a segment of the internet that often requires distinct access methods – has long been a hub for cybercrime that hackers adopted as a safe haven to trade data leaks, hacking tools and all things related…

Read more →

Key Insights and Strategies for Protecting Cloud Environments Introduction Cloud adoption is continuing to transform the IT infrastructure and security landscapes by delivering unmatched scalability and flexibility. Multi-cloud strategies further enhance these advantages but introduce unique challenges, prompting organizations to…

Read more →

For the first time, a team of security researchers has successfully infiltrated the network of a ransomware operation, exploiting a vulnerability to gather critical information and pass it on to law enforcement authorities. This unprecedented action has given law enforcement…

Read more →

Over the past few days, the Trump Administration has been embroiled in controversy surrounding a Signal group chat leak. This issue arose when a journalist was inadvertently included in a private messaging conversation regarding a U.S. military strike in Yemen.…

Read more →

Cary, North Carolina, 27th March 2025, CyberNewsWire The post G2 Names INE 2025 Cybersecurity Training Leader first appeared on Cybersecurity Insiders. The post G2 Names INE 2025 Cybersecurity Training Leader appeared first on Cybersecurity Insiders. This article has been indexed…

Read more →

Imagine the following scenario: The latest threat report comes out on a group that targets your vertical. The SOC quickly disseminates the report and starts to search for tactics, techniques and procedures (TTPs). Everything’s clear, no results are found. Two…

Read more →

Faced with a dreaded login page and a forgotten password, often the easiest way in for users is to simply hit forgot my password. If customers were aware that every time they request a reset, it costs companies an average…

Read more →

In 2022, the notorious LockBit ransomware group targeted the servers of the UK’s National Health Service (NHS), a breach that affected around 79,000 individuals, including both patients and staff. Upon investigation, it was revealed that the malware had infiltrated the…

Read more →

Too much of a good thing is always problematic, and cybersecurity tools are no exception. Corporate teams juggle a surplus of cybersecurity tools, all operating in silos. Walk into any security operations center, and you’ll find SIEMs, SOARs, EDRs, vulnerability…

Read more →

For healthcare executives, prioritizing security compliance is not just about meeting regulatory requirements but also protecting the organization’s reputation, reducing risks, and ensuring business continuity. More specifically, HITRUST CSF e1 or i1 certification can significantly enhance health plan and patient…

Read more →

The continuing surge in third-party data breaches underscores the profound cybersecurity vulnerabilities present in vendor supply chains. Case in point, Black Kite’s 2024 Third-Party Breach Report found that 92 vendors were linked to breaches impacting 227 companies. The true impact…

Read more →

As a cybersecurity professional, you must stay abreast of the latest resources that help users protect and work with information. Such offerings are critical for the higher-education industry, which stores data related to students’ academic achievements, health records, financial aid…

Read more →

In the first week of April 2025, TikTok, the wildly popular Chinese video-sharing platform that has captured the attention of millions in the United States, faces a major challenge. According to a directive issued by the Trump Administration in February…

Read more →

In today’s ever-evolving cybersecurity landscape, staying ahead of potential threats is a constant challenge. Advanced persistent threats, ransomware, and wipers are just a few risks organizations must guard against. However, quantum computing is one of the most complex and far-reaching…

Read more →

Many experts believe that quantum computing will arrive in the next decade. The unparalleled processing capabilities of these computers hold promise for advances in material science, drug discovery, artificial intelligence, environmental science, and much more. While quantum computing opens up…

Read more →

A ransomware group, whose identity remains undisclosed, has reportedly targeted a significant portion of the servers at Kuala Lumpur International Airport. Despite multiple demands from the attackers for a ransom of $10 million, Malaysian Prime Minister Anwar Ibrahim has firmly…

Read more →

These days, in this interconnected world, cyber attacks have become a significant threat to businesses, governments, and individuals alike. The motivations behind these attacks are varied, ranging from financial gain to political agendas, and the methods used by hackers are…

Read more →

Many content creators frequently use online file converter tools to rewrite documents, convert files to PDF, or change image formats for website use. However, the FBI has issued a stern warning about the risks associated with these platforms. According to…

Read more →

Alisa Viejo, United States, 25th March 2025, CyberNewsWire The post Active Roles Wins 2025 Cybersecurity Excellence Award for Hybrid Active Directory Protection first appeared on Cybersecurity Insiders. The post Active Roles Wins 2025 Cybersecurity Excellence Award for Hybrid Active Directory…

Read more →

Ramat Gan, Israel, 25th March 2025, CyberNewsWire The post CYREBRO Recognized in Gartner Emerging Tech Report for Detection and Response Startups first appeared on Cybersecurity Insiders. The post CYREBRO Recognized in Gartner Emerging Tech Report for Detection and Response Startups…

Read more →

Interpol Carries Out Major Arrests in Global Cybercrime Crackdown In a significant operation called “Operation Red Card,” Interpol has apprehended more than 300 individuals linked to cyber-attacks targeting both public and private organizations across Africa. Those arrested are believed to…

Read more →

In today’s fast-paced digital landscape, the role of the Chief Information Security Officer (CISO) has become essential to the success and stability of organizations worldwide. With cyber threats growing more sophisticated and data breaches becoming more common, companies can no…

Read more →

A look at how the industry can turn AI into a powerful scam-fighting tool  Artificial intelligence (AI) has advanced exponentially in recent years, but the truth is that AI technology is a double-edged sword. While AI helps with countless innocent…

Read more →

Andrew Smith, Kyocera’s CISO, explains why organisations should consider consolidating their tech vendors and how to avoid vendor lock-in Managing a full suite of tech vendors can be time-consuming and complicated. AI, cybersecurity, document management – the list can feel…

Read more →

Cary, NC, 24th March 2025, CyberNewsWire The post Cyber Guardians: INE Security Champions Cybersecurity Training During National Physicians Week 2025 first appeared on Cybersecurity Insiders. The post Cyber Guardians: INE Security Champions Cybersecurity Training During National Physicians Week 2025 appeared…

Read more →

In recent years, intelligence agencies in Western countries have reached a troubling conclusion: North Korea, led by Kim Jong Un, has been orchestrating cyber-attacks to steal cryptocurrency in order to fund its nuclear weapons program. Now, an alarming new development…

Read more →

Paris, France, 24th March 2025, CyberNewsWire The post Arsen Introduces AI-Powered Phishing Tests to Improve Social Engineering Resilience first appeared on Cybersecurity Insiders. The post Arsen Introduces AI-Powered Phishing Tests to Improve Social Engineering Resilience appeared first on Cybersecurity Insiders.…

Read more →

Global cybersecurity spending is expected to rise significantly, reaching $377 billion in 2024, up from $305 billion in the previous year (2023-2024). This sharp increase in expenditure is closely tied to the growing complexity and frequency of cyber threats, which…

Read more →